Cisco IOS XE vulnerability widely exploited in the wild

Categories: Exploits and vulnerabilities

Categories: News

Tags: Cisco

Tags: IOS X

Tags: remote management

Tags: vulnerability

Tags: CVE-2023-20198

Tags: webUI

Tags: http server

Tags: http secure-server

Researchers have found that a recently disclosed vulnerability in Cisco IOS XE has already rendered thousands of compromised devices.

(Read more…)

The post Cisco IOS XE vulnerability widely exploited in the wild appeared first on Malwarebytes Labs.

Read more

Cisco VPNs without MFA are under attack by ransomware operator

Categories: Business

Categories: News

Tags: Cisco

Tags: VPN

Tags: Akira

Tags: ransomware

Tags: brute-force

Tags: credential stuffing

Tags: password spraying

Several researchers are seeing ransomware attacks targetting Cisco VPNs without MFA

(Read more…)

The post Cisco VPNs without MFA are under attack by ransomware operator appeared first on Malwarebytes Labs.

Read more

Update now! Microsoft patches a whopping 130 vulnerabilities

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: Adobe

Tags: Apple

Tags: Android

Tags: Cisco

Tags: Fortinet

Tags: MOVEit

Tags: Mozilla

Tags: SAP

Tags: VMware

Tags: CVE-2023-32049

Tags: CVE-2023-35311

Tags: CVE-2023-32046

Tags: CVE-2023-36874

Tags: CVE-2023-36844

For the July 2023 Patch Tuesday, Microsoft has issued security updates for 130 vulnerabilities, four of which are known to have been actively exploited.

(Read more…)

The post Update now! Microsoft patches a whopping 130 vulnerabilities appeared first on Malwarebytes Labs.

Read more

Apple & Microsoft Patch Tuesday, July 2023 Edition

Credit to Author: BrianKrebs| Date: Tue, 11 Jul 2023 22:55:07 +0000

Microsoft Corp. today released software updates to quash 130 security bugs in its Windows operating systems and related software, including at least five flaws that are already seeing active exploitation. Meanwhile, Apple customers have their own zero-day woes again this month: On Monday, Apple issued (and then quickly pulled) an emergency update to fix a zero-day vulnerability that is being exploited on MacOS and iOS devices.

Read more

Update your Cisco System Secure Client now to fix this AnyConnect bug

Categories: Exploits and vulnerabilities

Categories: News

Tags: Cisco

Tags: anyconnect

Tags: system secure client

Tags: VPN

Tags: bug

Tags: patch

Tags: update

Tags: vulnerability

Tags: SYSTEM

We take a look at a recent update for Cisco Secure System Client and why you should apply the update as soon as possible.

(Read more…)

The post Update your Cisco System Secure Client now to fix this AnyConnect bug appeared first on Malwarebytes Labs.

Read more

A week in security (May 22-28)

Categories: News

Tags: Cisco

Tags: Zyxel

Tags: ChatGPT

Tags: Malvertising

Tags: Apple

Tags: Google

Tags: insider threat

Tags: Pentagon explosion

Tags: CISA

Tags: ransomware guide

Tags: Rheinmetall

Tags: BlackBasta

Tags: WordPress

A list of topics we covered in the week of May 22- 28 of 2023

(Read more…)

The post A week in security (May 22-28) appeared first on Malwarebytes Labs.

Read more

Update now: 9 vulnerabilities impact Cisco Small Business Series

Categories: Business

Tags: Cisco

Tags: small business series

Tags: web interface

Tags: CVE

Tags: exploit

Tags: root

If you’re using one of the affected products from the Cisco small business range, you need to patch immediately.

(Read more…)

The post Update now: 9 vulnerabilities impact Cisco Small Business Series appeared first on Malwarebytes Labs.

Read more

Update now! May 2023 Patch Tuesday tackles three zero-days

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: CVE-2023-29336

Tags: CVE-2023-24932

Tags: bootkit

Tags: CVE-2023-29325

Tags: Outlook

Tags: preview

Tags: CVE-2023-24941

Tags: Apple

Tags: Cisco

Tags: Google

Tags: Android

Tags: VMWare

Tags: SAP

Tags: Mozilla

Microsoft’s Patch Tuesday round up for May 2023 includes patches for three zero-day vulnerabilities and one critical remote code execution vulnerability

(Read more…)

The post Update now! May 2023 Patch Tuesday tackles three zero-days appeared first on Malwarebytes Labs.

Read more

Fancy Bear known to be exploiting vulnerability in Cisco routers

Categories: Exploits and vulnerabilities

Categories: News

Tags: APT28

Tags: Sofacy

Tags: Fancy Bear

Tags: GRU

Tags: Cisco

Tags: CVE–2017-6742

Tags: SNMP

Tags: Jaguar Tooth

A joint advisory about a Cisco vulnerability by several US and UK agencies gives us a peek inside the minds of ideologically motivated cybercriminals

(Read more…)

The post Fancy Bear known to be exploiting vulnerability in Cisco routers appeared first on Malwarebytes Labs.

Read more