Vulnerability

New MOVEit Bug Actively Exploited Within Hours of Public Disclosure

Jun 28, 2024 By Foresiet In Foresiet

A high-severity security flaw in Progress Software's MOVEit Transfer platform is being exploited in the wild just hours after its disclosure. This vulnerability, identified as CVE-2024-5806, allows attackers to bypass authentication mechanisms and pose as any valid user, thereby gaining access to sensitive files.

Read Post

Foresiet

Read more about New MOVEit Bug Actively Exploited Within Hours of Public Disclosure

Risks for Polyfill.io Users

Jun 28, 2024 By Lauren Farrell In Centripetal

Earlier this year, a Chinese company named Funnull acquired the polyfillio. Due to this acquisition, this code was used to redirect mobile visitors to scam sites. Over 100,000 websites using the previously popular Polyfill JS open-source project are vulnerable to attacks that redirect traffic to sports betting and pornography sites.

Read Post

Centripetal

Read more about Risks for Polyfill.io Users

Unfurling Hemlock: New threat group uses cluster bomb campaign to distribute malware

Jun 27, 2024 By KrakenLabs In Outpost 24

While reviewing common TTPs in malware campaigns used last year Outpost24’s Cyber Threat Intelligence team, KrakenLabs, came across several reports and articles describing a novel infection technique being used to distribute various types of malware not necessarily related to each other. For example, this article analyzing Amadey and this one talking about Redline.

Read Post

Outpost 24

Read more about Unfurling Hemlock: New threat group uses cluster bomb campaign to distribute malware

Container Security Scanning: Vulnerabilities, Risks and Tooling

Jun 27, 2024 By Guest Expert In GitGuardian

Container security is crucial in the age of microservices and DevOps. Learn about common container vulnerabilities, container security scanning, and popular tools to secure your containers in this comprehensive guide.

Read Post

GitGuardian

Read more about Container Security Scanning: Vulnerabilities, Risks and Tooling

How to secure a REST API?

Jun 27, 2024 By Liran Tal In Snyk

As developers, we often have to work with REST APIs when we integrate with third-party systems or connect between frontend and backend systems at work. APIs, and REST APIs in particular, are a fundamental part of modern web applications, allowing us to create, read, update, and delete data over HTTP. However, as with any technology, they come with their own set of security challenges. Let's break these challenges down and understand how to secure REST API applications.

Read Post

Snyk

Read more about How to secure a REST API?

The exploit prediction scoring system: What it is and how to use it

Jun 27, 2024 By Graylog Security In Graylog

Managing vulnerabilities can feel like the end of the first act of Les Misérables as you sing to yourself, “one day more, another day another vulnerability.” Like Jean Valjean, you attempt to put up barricades to protect your environment from attackers exploiting these security weaknesses. Keeping pace with the number of vulnerabilities and threat actor activities becomes overwhelming, leaving you to feel outnumbered and outmanned.

Read Post

Graylog

Read more about The exploit prediction scoring system: What it is and how to use it

Building a Human-Centric Vulnerability Management Program

Jun 27, 2024 By Nucleus In Nucleus

Steve Carter, CEO and co-founder of Nucleus Security, and Dr. Nikki Robinson, Security Architect at IBM, discuss the importance of the people side of vulnerability management. They explore challenges such as context switching, long mean time to remediation, and the impact of communication on vulnerability management programs. The conversation includes practical advice on incorporating human factors into cybersecurity practices, how to improve communication and collaboration among teams, and why understanding human factors is crucial for effective vulnerability management.

View Video

Nucleus

Read more about Building a Human-Centric Vulnerability Management Program

MOVEit Gateway and MOVEit Transfer Vulnerabilities

Jun 27, 2024 By Lauren Farrell In Centripetal

On June 25, 2024, Progress Software, the parent company of the MOVEit software suite, officially released details for two critical vulnerabilities identified in MOVEit Gateway and MOVEit Transfer, CVE-2024-5805 and CVE-2024-5806 respectively. MOVEit Transfer is a managed file transfer solution that supports the exchange of files and data between servers, systems and applications within and between organizations.

Read Post

Centripetal

Read more about MOVEit Gateway and MOVEit Transfer Vulnerabilities

CVE-2024-5805 & CVE-2024-5806: Authentication Bypass Vulnerabilities in Progress MOVEit Transfer and MOVEit Gateway

Jun 26, 2024 By Andres Ramos In Arctic Wolf

On June 25, 2024, Progress disclosed two vulnerabilities affecting MOVEit Transfer and MOVEit Gateway: CVE-2024-5805: A critical severity authentication bypass vulnerability affecting MOVEit Gateway (SFTP module). MOVEit Gateway is a proxy for MOVEit Transfer, designed to securely handle inbound connections when deployed behind a firewall.

Read Post

Arctic Wolf

Read more about CVE-2024-5805 & CVE-2024-5806: Authentication Bypass Vulnerabilities in Progress MOVEit Transfer and MOVEit Gateway

How security teams enhance vulnerability management with Tines

Jun 26, 2024 By Dave Herder In Tines

When it comes to vulnerability management, time is critical - every minute a vulnerability goes unaddressed, the risk escalates. To ensure all risks are addressed, security teams need vulnerability management processes that are reliable and efficient, and, crucially, don’t drain their resources. And given that 22% of cybersecurity professionals have admitted to ignoring an alert completely, we can’t afford to rely on the human element alone.

Read Post