Vulnerabilities | Jaspen IT Services

Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices

May 2, 2021 | IoT, News, Vulnerabilities

Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices Azure Defender security team discovers that memory allocation is a systemic problem that can allow threat actors to execute malicious code remotely or cause entire systems to crash. Go to Source...

F5 Big-IP Vulnerable to Security-Bypass Bug

May 2, 2021 | News, Vulnerabilities

F5 Big-IP Vulnerable to Security-Bypass Bug The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign into the Big-IP Access Policy Manager or admin console. Go to Source Author: Tara Seals

Prometei Botnet Could Fire Up APT-Style Attacks

Apr 24, 2021 | Malware, News, Vulnerabilities

The malware is for now using exploits for the Microsoft Exchange “ProxyLogon” security bugs to install Monero-mining malware on targets.

4 Innovative Ways Cyberattackers Hunt for Security Bugs

Apr 22, 2021 | Hacks, InfoSec Insider, News, Vulnerabilities, Web Security

David “moose” Wolpoff, co-founder and CTO at Randori, talks lesser-known hacking paths, including unresolved “fixme” flags in developer support groups.

Pulse Secure Critical Zero-Day Security Bug Under Active Exploit

Apr 22, 2021 | Government, Hacks, Malware, News, Vulnerabilities, Web Security

CVE-2021-22893 allows remote code-execution (RCE) and is being used in the wild by nation-state cyberattackers to compromise VPN appliances in defense, finance and government orgs.

Chrome Zero-Day Exploit Posted on Twitter

Apr 13, 2021 | News, Vulnerabilities, Web Security

An update to Google’s browser that fixes the flaw is expected to be released on Tuesday.