Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

sumologic

Responding to CVE-2024-3094 - Supply chain compromise of XZ Utils

Apr 1, 2024 By Anton Ovrutsky In Sumo Logic
It seems as though responders cannot catch a break when it comes to 0-day vulnerabilities and supply chain compromise avenues. On March 29th, 2024, the Cybersecurity & Infrastructure Security Agency published an alert regarding a supply chain compromise of the XZ Utils package. At time of writing, there is no information regarding exploitation of the vulnerability and follow-on post-compromise activity.
Read Post
securitysenses

Security in the Digital Age: How Fax Apps Ensure Confidentiality and Compliance

Mar 31, 2024 By SecuritySenses In SecuritySenses
Where data breaches and privacy concerns are rampant, ensuring the confidentiality and compliance of sensitive information is paramount. From healthcare to finance, legal to government sectors, organizations grapple with the challenge of safeguarding data while adhering to regulatory requirements. Amidst the plethora of communication tools available, fax applications emerge as stalwart guardians of security, offering a robust solution for transmitting sensitive information securely. In this article, we delve into the world of fax apps, exploring how they bolster confidentiality and compliance in the digital age.
Read Post
mend

Critical Backdoor Found in XZ Utils (CVE-2024-3094) Enables SSH Compromise

Mar 31, 2024 By Tom Abai In Mend
*April 1 update. it was confirmed that Fedora 40 is not affected by the backdoor. However, users should still downgrade to a 5.4 build to be safe. On March 29th, 2024, a critical CVE was issued for the XZ-Utils library. This vulnerability allows an attacker to run arbitrary code remotely on affected systems. Due to its immediate impact and wide scope, the vulnerability has scored 10 for both CVSS 3.1 and CVSS 4, which is the highest score available.
Read Post
WatchGuard

World Backup Day: How and why to make backup copies

Mar 31, 2024 By The Editor In WatchGuard
Data protection continues to be a headache for many companies. Nowadays, data theft is a concern that affects organizations worldwide, making threat protection a priority but, for many, it is still a pending task. A recent report reveals that ransomware attacks are likely to compromise the data of 80% of organizations. Faced with this threat, cybersecurity experts stress the importance of backing up data to minimize damage if an attack does occur.
Read Post
riskoptics

Setting Objectives with ISO 27001's ISMS: A Strategic Overview

Mar 31, 2024 By RiskOptics In RiskOptics
ISO 27001 is an international standard specifying how organizations should develop and implement an effective information security management system (ISMS). Organizations can apply ISO 27001 to manage their information security risks and be certified as ISO 27001-compliant. The measures to achieve compliance are specified in Annex A of the standard; organizations should select and apply the necessary controls to safeguard their stakeholders based on their own company risk profile.
Read Post
Snyk

The XZ Backdoor CVE-2024-3094

Mar 31, 2024 By Liran Tal In Snyk
Unveiled on the 29th of March 2024 is the high-stakes investment and prolonged campaign by a malicious actor to plant a backdoor in the Linux software library liblzma to gain access to multiple operating systems via Linux distributions, which arguably worked out successfully. That is until a curious engineer noticed a glitch. Currently known affected upstream software and proposed mitigation.
Read Post
armo

Bombshell in SSH servers! What CVE-2024-3094 means for Kubernetes users

Mar 31, 2024 By Amit Schendel In ARMO
On March 29, 2024, Red Hat disclosed CVE-2024-3094 (a.k.a XZ vulnerability) scoring a critical CVSS rating of 10. Stemming from a supply chain compromise it affects the latest iterations of XZ tools and libraries. The CVE was identified by a software engineer following the discovery of performance issues in SSH connections. This led to the exposure of a major supply chain attack where a compromised library was inserted into sshd and exploited during the authentication process.
Read Post
synopsys

How to detect, prevent, and mitigate buffer overflow attacks

Mar 31, 2024 By Natalie Lightner In Synopsys
In the late 1980s, a buffer overflow in UNIX’s fingerd program allowed Robert T. Morris to create a worm which infected 10% of the Internet—in two days. This event launched cybersecurity to the forefront of computer science headlines for one of the first times in history. Nearly three decades later in 2014, a buffer overflow vulnerability in the OpenSSL cryptography library was disclosed to the public.
Read Post
riskoptics

Creating an Efficient Document Repository for Compliance

Mar 31, 2024 By RiskOptics In RiskOptics
Modern organizations have huge demands for regulatory compliance, which means a huge amount of documentation that your business must generate and manage to show that it is fulfilling those compliance obligations. As such, a document management system is crucial for an effective compliance program. This article will review what document management systems should be able to do, common challenges in building a document management system, and how to get started with doing so.
Read Post
jfrog

CVE-2024-3094 XZ Backdoor: All you need to know

Mar 31, 2024 By Shachar Menashe In JFrog
On March 29th, it was reported that malicious code enabling unauthorized remote SSH access has been detected within XZ Utils, a widely used package present in major Linux distributions (The GitHub project originally hosted here is now suspended). Fortunately, the malicious code was discovered quickly by the OSS community and managed to infect only two of the most recent versions of the package, 5.6.0 and 5.6.1, which were released within the past month.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.