Kategorie: IT-Security

BIOS-Lücken: Angreifer können Dell-PCs kompromittieren

heise Security  Unter anderem PCs der Serie Alienware und Inspiron sind vor Attacken gefährdet. Dabei kann Schadcode auf Computer gelangen.  Read More 

ZKTeco Biometric System Found Vulnerable to 24 Critical Security Flaws

The Hacker News [[{„value“:“An analysis of a hybrid biometric access system from Chinese manufacturer ZKTeco has uncovered two dozen security flaws that could be used by attackers to defeat authentication, steal biometric data, and even deploy malicious backdoors. „By adding random user data to the database or using a fake QR code, a nefarious actor can…
Weiterlesen

North Korean Hackers Target Brazilian Fintech with Sophisticated Phishing Tactics

The Hacker News [[{„value“:“Threat actors linked to North Korea have accounted for one-third of all the phishing activity targeting Brazil since 2020, as the country’s emergence as an influential power has drawn the attention of cyber espionage groups. „North Korean government-backed actors have targeted the Brazilian government and Brazil’s aerospace, technology, and financial services sectors,“ Google’s…
Weiterlesen

Microsoft Delays AI-Powered Recall Feature for Copilot+ PCs Amid Security Concerns

The Hacker News [[{„value“:“Microsoft on Thursday revealed that it’s delaying the rollout of the controversial artificial intelligence (AI)-powered Recall feature for Copilot+ PCs. To that end, the company said it intends to shift from general availability preview available first in the Windows Insider Program (WIP) in the coming weeks. „We are adjusting the release model for…
Weiterlesen

Qubes Canary 039

Qubes OS [[{„value“:“ We have published Qubes Canary 039. The text of this canary and its accompanying cryptographic signatures are reproduced below. For an explanation of this announcement and instructions for authenticating this canary, please see the end of this announcement. Qubes Canary 039 —===[ Qubes Canary 039 ]===— Statements ———– The Qubes security team members…
Weiterlesen

Re: Security vulnerability in fprintd

Open Source Security [[{„value“:“ Posted by Mark Esler on Jun 13 At Marco’s request, I am asking MITRE to either revoke CVE-2024-37408 or for MITRE to transfer CVE ownership to Canonical’s CNA for revocation.„}]] Read More 

Re: Security vulnerability in fprintd

Open Source Security [[{„value“:“ Posted by Marco Trevisan on Jun 13 Hi Yaron, Thanks for taking time to look into this issue. We appreciate the analysis you did, although, as we already shared privately, we don’t think that this is a fprintd issue but rather an architectural issue of how PAM modules interact with sudo that,…
Weiterlesen

CISA warnt: Kritischer PHP-Bug wird von Ransomware ausgenutzt

heise Security  Automatisierte Attacken gegen Windows-Systeme mit PHP-CGI führen zur Infektion. Die Angreifer laden Schadcode nach und verschlüsseln den Server.  Read More 

CVE-2024-25142: Apache Airflow: Cache Control – Storage of Sensitive Data in Browser Cache

Open Source Security [[{„value“:“ Posted by Jarek Potiuk on Jun 13 Severity: low Affected versions: – Apache Airflow before 2.9.2 Description: Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow.  Airflow did not return „Cache-Control“ header for dynamic content, which in case of some browsers could result in potentially storing sensitive data in…
Weiterlesen

New Attack Technique ‚Sleepy Pickle‘ Targets Machine Learning Models

The Hacker News [[{„value“:“The security risks posed by the Pickle format have once again come to the fore with the discovery of a new „hybrid machine learning (ML) model exploitation technique“ dubbed Sleepy Pickle. The attack method, per Trail of Bits, weaponizes the ubiquitous format used to package and distribute machine learning (ML) models to corrupt…
Weiterlesen