🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
9 JanCritical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF InjectionThreat actors are attempting to take advantage of a recently disclosed security flaw impacting GFI KerioControl firewalls that, if successfully exploited, could allow malicious actors to achieve remote code execution (RCE). The vulnerability in question, CVE-2024-52875, refers to…THEHACKERNEWS.COM
9 Jan KEVIvanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy SecureIvanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning mid-December 2024. The security vulnerability in question is CVE-2025-0282 (CVSS score: 9.0), a stack-based bu…THEHACKERNEWS.COM
9 JanCVE-2025-21385 Microsoft Purview Information Disclosure VulnerabilityA Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview allows an authorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 JanCVE-2025-21380 Azure Marketplace SaaS Resources Information Disclosure VulnerabilityImproper access control in Azure SaaS Resources allows an authorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 JanInformation Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC ExploitOur blog entry discusses a fake PoC exploit for LDAPNightmare (CVE-2024-49113) that is being used to distribute information-stealing malware.TRENDMICRO.COM
⚠️ VULNERABILITY DISCLOSURE 5[−]
9 JanMultiple vulnerabilities in SonicWall SonicOS could allow a remote attacker to bypass authentication.Multiple vulnerabilities have been discovered in SonicWall SonicOS that could allow for authentication bypass. SonicOS is SonicWall’s operating system designed for their firewalls and other security devices. Successful exploitation of the most severe of these vulnerabilities coul…CISECURITY.ORG
9 JanMajor Vulnerabilities Patched in SonicWall, Palo Alto Expedition, and Aviatrix ControllersPalo Alto Networks has released software patches to address several security flaws in its Expedition migration tool, including a high-severity bug that an authenticated attacker could exploit to access sensitive data. "Multiple vulnerabilities in the Palo Alto Networks Expedition…THEHACKERNEWS.COM
9 JanNew Banshee Stealer Variant Bypasses Antivirus with Apple’s XProtect-Inspired EncryptionCybersecurity researchers have uncovered a new, stealthier version of a macOS-focused information-stealing malware called Banshee Stealer. "Once thought dormant after its source code leak in late 2024, this new iteration introduces advanced string encryption inspired by Apple's X…THEHACKERNEWS.COM
9 JanSmashing Security podcast #399: Honey in hot water, and reset your devicesEver wonder how those "free" browser extensions that promise to save you money actually work? We dive deep into the controversial world of Honey, the coupon-finding tool owned by PayPal, and uncover a scheme that might be leaving you with less savings and your favorite YouTubers …GRAHAMCLULEY.COM
📢 SECURITY ADVISORIES 2[−]
9 JanMirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on JapanJapan's National Police Agency (NPA) and National Center of Incident Readiness and Strategy for Cybersecurity (NCSC) accused a China-linked threat actor named MirrorFace of orchestrating a persistent attack campaign targeting organizations, businesses, and individuals in the coun…THEHACKERNEWS.COM
9 JanCybersecurity trends: IBM’s predictions for 2025Cybersecurity concerns in 2024 can be summed up in two letters: AI (or five letters if you narrow it down to gen AI). Organizations are still in the early stages of understanding the risks and rewards of this technology. For all the good it can do to improve data protection, keep…SECURITYINTELLIGENCE.COM
🔥 INCIDENT REPORTING 4[−]
9 JanWebinar: Learn How to Stop Encrypted Attacks Before They Cost You MillionsRansomware isn’t slowing down—it’s getting smarter. Encryption, designed to keep our online lives secure, is now being weaponized by cybercriminals to hide malware, steal data, and avoid detection.The result? A 10.3% surge in encrypted attacks over the past year and some of the m…THEHACKERNEWS.COM
9 JanSpace Bears ransomware: what you need to knowThe Space Bears ransomware gang stands out from the crowd by presenting itself better than many legitimate companies, with corporate stock images and a professional-looking leak site. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
9 JanUnited Nations aviation agency hacked, recruitment database plunderedThe ICAO, the UN aviation agency tasked with keeping our skies safe, just got hacked... again. This time, a hacker is offering to sell the personal data of 42,000 job applicants. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
9 JanHow vulnerable Ecovacs robot vacuums are being hacked | Kaspersky official blogHow cyberhooligans are hacking vulnerable Ecovacs robot vacuums and lawnmowers to spy on their owners and rain misery upon them.KASPERSKY.COM
🕵️ THREAT INTELLIGENCE 1[−]
9 JanPhishing Campaign Abuses Legitimate Services to Send PayPal RequestsA phishing campaign is abusing Microsoft 365 test domains to send legitimate payment requests from PayPal, according to Fortinet’s CISO Dr. Carl Windsor.KNOWBE4.COM
📡 INFOSEC NEWS 5[−]
9 JanThe Dangers of DNS HijackingHow expired domains and improper DNS management can lead to severe security risks like MitM attacks, fraudulent TLS/SSL certifications, and more.F5.COM
9 JanProduct Walkthrough: How Reco Discovers Shadow AI in SaaSAs SaaS providers race to integrate AI into their product offerings to stay competitive and relevant, a new challenge has emerged in the world of AI: shadow AI. Shadow AI refers to the unauthorized use of AI tools and copilots at organizations. For example, a developer usin…THEHACKERNEWS.COM
9 JanCrypto is soaring, but so are threats: Here’s how to keep your wallet safeAs detections of cryptostealers surge across Windows, Android and macOS, it's time for a refresher on how to keep your bitcoin or other crypto safeWELIVESECURITY.COM
9 JanThe Dangers of DNS HijackingHow expired domains and improper DNS management can lead to severe security risks like MitM attacks, fraudulent TLS/SSL certifications, and more.F5.COM
9 JanThe Dangers of DNS HijackingHow expired domains and improper DNS management can lead to severe security risks like MitM attacks, fraudulent TLS/SSL certifications, and more.F5.COM