|
You are here |
blog.acrossecurity.com | ||
| | | | |
mazinahmed.net
|
|
| | | | | Application and Infrastructure Security Engineering | |
| | | | |
openssf.org
|
|
| | | | | [AI summary] A backdoor vulnerability (CVE-2024-3094) was discovered in the xz package, allowing potential remote system compromise through compromised software supply chain practices. | |
| | | | |
sparklekitten.net
|
|
| | | | | [AI summary] The post reviews May's threat intelligence landscape, highlighting the 3CX supply chain attack by North Korean actors, the targeting of ESXi servers by ransomware, the active exploitation of VEEAM backup vulnerabilities by FIN7, and a newly critical Cisco zero-day, alongside advice on mitigation strategies. | |
| | | | |
blog.darkwolfsolutions.com
|
|
| | | September 26, 2024 Episode 15 CVE-2024-45623: Unauthenticated RCE in D-Link DAP-2310 Authors: Hahna Kane Latonick and Jonathan Waterman Dark Wolf Solutions recently disclosed a vulnerability to D-Link that results in unauthenticated remote code execution (RCE) in their DAP-2310 REV-A Wireless | ||