Vulnerability

Taking a Threat Adapted Approach to Vulnerability Management

Jan 22, 2025 By Chris Jacob, VP and Will Baxter, Security Engineer In ThreatQuotient

As cyber threats continue to grow in complexity and frequency, vulnerability management requires more than just patching systems; it demands a dynamic, threat-adapted approach. As part of Cyber Rhino Threat Week (9-13th of December 2024) which aimed to inform, sharing threat intelligence insights and best practices with our customers, partners and industry ecosystem, we held a session that explored how integrating Threat Intelligence into Vulnerability Management can transform the way organisations prioritise and respond to risks.

Read Post

ThreatQuotient

Read more about Taking a Threat Adapted Approach to Vulnerability Management

Check out our latest podcast episode, featuring Sam Stepanyan, Global Board Member at OWASP!

Jan 22, 2025 By Netacea In Netacea

#Cybersecurity #podcast #onlinesecurity

View Video

Netacea

Read more about Check out our latest podcast episode, featuring Sam Stepanyan, Global Board Member at OWASP!

How Vulnerability Assessments Help Identify and Address Security Weaknesses

Jan 21, 2025 By Kate Watson In Pentest People

A vulnerability assessment systematically evaluates the security of an organisation’s IT infrastructure, aiming to uncover potential flaws. This process not only identifies weaknesses but also provides a roadmap for addressing these vulnerabilities before they are exploited by malicious actors. Through a series of structured steps, including identification, classification, analysis, and remediation, organisations can significantly enhance their cyber security posture.

Read Post

Pentest People

Read more about How Vulnerability Assessments Help Identify and Address Security Weaknesses

The Ultimate Guide to Building and Publishing Modern npm Packages (PART 1)

Jan 20, 2025 By Snyk In Snyk

In this video, we’ll walk you through the process of creating a modern npm package from scratch. Whether you're a seasoned developer or just starting out, this step-by-step guide will show you how to build, test, and publish an npm package.

View Video

Snyk

Read more about The Ultimate Guide to Building and Publishing Modern npm Packages (PART 1)

Detecting and mitigating CVE-2024-12084: rsync remote code execution

Jan 17, 2025 By Sysdig Threat Research Team In Sysdig

On Tuesday, January 14, 2025, a set of vulnerabilities were announced that affect the “rsync” utility. Rsync allows files and directories to be flexibly transferred locally and remotely. It is often used for deployments and backup purposes. In total, 6 vulnerabilities were announced to the OSS Security mailing list. The most severe vulnerability, CVE-2024-12084, may result in remote code execution. This post will cover how to detect and mitigate CVE-2024-12084.

Read Post

Sysdig

Read more about Detecting and mitigating CVE-2024-12084: rsync remote code execution

Microsoft Corporation Latest Security Update on Actively Exploited Zero-Day Flaws for Safer Digital Operations

Jan 17, 2025 By Foresiet In Foresiet

Organizations need to be watchful and vigilant with their cyber space because cyber threats keep on evolving. And, in fact, urgency is provided by the security update of January 2025 from Microsoft, which patches at least 161 vulnerabilities, including three zero-day flaws actively exploited in the wild.

Read Post

Foresiet

Read more about Microsoft Corporation Latest Security Update on Actively Exploited Zero-Day Flaws for Safer Digital Operations

Fortinet Discloses Active Exploitation of Critical Zero-Day Vulnerability: CVE-2024-55591

Jan 17, 2025 By Kroll In Kroll

Note: These vulnerabilities remain under active exploitation and Kroll experts are investigating. If further details are uncovered by our team, updates will be made to the Kroll Cyber Risk blog. A critical authentication bypass vulnerability (CWE-288) affecting FortiOS and FortiProxy (FG-IR-24-535) allows remote attackers to obtain super admin privileges via Node.js WebSocket traffic.

Read Post

Kroll

Read more about Fortinet Discloses Active Exploitation of Critical Zero-Day Vulnerability: CVE-2024-55591

ConVErsations: Criminal Discussion of Vulnerabilities and Exploits

Jan 17, 2025 By Jovana Macakanja In CYJAX

Defenders often discuss security vulnerabilities on GitHub, Stack overflow, X (formerly Twitter), and other platforms to share knowledge of these threats and ensure users know when patches are available. Cybercriminals have a similar process, choosing to share vulnerability news, exploit code, and engage in technical discussions on cybercriminal forums. However, in contrast to defenders, these threat actors share this knowledge for the purpose finding unpatched systems and exploiting them.

Read Post

CYJAX

Read more about ConVErsations: Criminal Discussion of Vulnerabilities and Exploits

Emerging Threat: Fortinet CVE-2024-55591

Jan 16, 2025 By Emma Zaballos In CyCognito

On January 14, 2025, Fortinet disclosed a new critical (CVSS 9.6) authentication bypass vulnerability affecting FortiOS and FortiProxy. This vulnerability, CVE-2024-55591, allows unauthenticated remote attackers to target the Node.js WebSocket module of the administrative interface and potentially gain super-admin privileges.

Read Post

CyCognito

Read more about Emerging Threat: Fortinet CVE-2024-55591

Security Bulletin: CVE-2024-55591 Fortinet - Authentication Bypass

Jan 16, 2025 By Bruce Skillern In Centripetal

On January 14, 2025 Fortinet confirmed a critical zero-day vulnerability, CVE-2024-55591, in Fortinet’s FortiOS and FortiProxy systems that has been actively exploited in the wild. This authentication bypass vulnerability allows attackers to gain super-admin privileges via crafted requests to the Node.js WebSocket module, enabling unauthorized access to firewalls, rogue administrative account creation, and configuration changes.

Read Post