X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - BLEEPINGCOMPUTER.COM - A La Une - 24/Jun 19:03

New attack uses MSC files and Windows XSS flaw to breach networks

A novel command execution technique dubbed 'GrimResource' uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw to perform code execution via the Microsoft Management Console. [...]

Articles similaires

Sorry! Image not available at this time

CosmicSting flaw impacts 75% of Adobe Commerce, Magento sites

bleepingcomputer.com - 20/Jun 20:02

A vulnerability dubbed "CosmicSting" impacting Adobe Commerce and Magento websites remains largely unpatched nine days after the security update has...

Sorry! Image not available at this time

New Orcinius Trojan Uses VBA Stomping to Mask Infection

itsecuritynews.info - 02/Jul 13:32

This multi-stage trojan utilizes Dropbox and Google Docs to update and deliver payloads. It uses the VBA stomping technique, removing the VBA source...

Sorry! Image not available at this time

Microsoft discloses 2 flaws in Rockwell Automation PanelView Plus

itsecuritynews.info - 09:04

Microsoft discovered two flaws in Rockwell Automation PanelView Plus that remote, unauthenticated attackers could exploit. Microsoft responsibly...

Sorry! Image not available at this time

Microsoft discloses 2 flaws in Rockwell Automation PanelView Plus

securityaffairs.co - 08:20

Microsoft discovered two flaws in Rockwell Automation PanelView Plus that remote, unauthenticated attackers could exploit. Microsoft responsibly...

Sorry! Image not available at this time

Critical unauthenticated remote code execution flaw in OpenSSH server

itsecuritynews.info - 01/Jul 15:09

A critical flaw in the OpenSSH server can be exploited to achieve unauthenticated remote code execution with root privileges in glibc-based Linux...

Sorry! Image not available at this time

South Korean Telecommunications Company Uses Malware on Its Own Customers

thecekodok.com - 27/Jun 12:32

When it comes to malware attacks, these are usually only done by hacker groups looking for a quick, malicious profit. It's a different story in South...

Sorry! Image not available at this time

Mitigating Skeleton Key, a New Type of Generative AI Jailbreak Technique

itsecuritynews.info - 28/Jun 08:32

Microsoft has discovered a new type of jailbreak attack called Skeleton Key. This technique uses a multi-turn strategy to make the model ignore its...

Sorry! Image not available at this time

Hundreds of PC, Server Models Possibly Affected by Serious Phoenix UEFI Vulnerability

itsecuritynews.info - 20/Jun 14:10

Hundreds of PC and server models may be affected by CVE-2024-0762, a privilege escalation and code execution flaw in Phoenix SecureCore UEFI firmware....

Sorry! Image not available at this time

RegreSSHion Vulnerability Exposes Linux Systems to RCE Attacks

itsecuritynews.info - 03/Jul 15:34

Researchers revealed a signal handler race condition RegreSSHion vulnerability that puts OpenSSH servers at risk. The flaw is tracked as CVE-2024-6387...

Sorry! Image not available at this time

Microsoft Uncovers Critical Flaws in Rockwell Automation PanelView Plus

itsecuritynews.info - 11:06

Microsoft has revealed two security flaws in Rockwell Automation PanelView Plus that could be weaponized by remote, unauthenticated attackers to...

Les derniers communiqués