"Moxa router flaws pose serious risks to industrial environments."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 07 January 2025, 1325 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fsecurityaffairs.co%2Fwordpress%2Ffeed

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security Affairs

69K followers23 articles per week#security#tech

9

Today

Moxa router flaws pose serious risks to industrial environmets

3 TTPs

•

by Pierluigi Paganini / 50min

Moxa warns of two flaws in its routers and security appliances that enable privilege escalation and remote command execution. Moxa addressed privilege escalation and OS command injection vulnerabilities in cellular routers, secure routers, and network security appliances. Below are the descriptions for both vulnerabilities: CVE-2024-9138 (CVSS 4.0 score: 8.6): This vulnerability involves hard-cod

Yesterday

US adds Tencent to the list of companies supporting Chinese military

by Pierluigi Paganini / 4h

US adds Chinese multinational technology and entertainment conglomerate Tencent to the list of companies supporting the Chinese military. The US Department of Defense has added Chinese multinational technology and entertainment conglomerate Tencent to its “Chinese military company” list under the Section 1260 requirement. The US government does not explain the decision. The list includes the comp

Eagerbee backdoor targets govt entities and ISPs in the Middle East

by Pierluigi Paganini / 6h

Experts spotted new variants of the Eagerbee backdoor being used in attacks on government organizations and ISPs in the Middle East. Kaspersky researchers reported that new variants of the Eagerbee backdoor being used in attacks against Internet Service Providers (ISPs) and government entities in the Middle East. The Kaspersky’s analysis revealed new attack components, including a service injecto

Nessus scanner agents went offline due to a faulty plugin update

Tenable Nessus agents offline globally

•

by Pierluigi Paganini / 21h

Tenable disabled two Nessus scanner agent versions after a faulty plugin update caused agents to go offline. Tenable Nessus is a widely-used vulnerability scanning tool designed to identify and assess security vulnerabilities in systems, networks, and applications. Tenable was forced to disable two Nessus scanner agent versions because a faulty plugin update caused agents to go offline. “We are a

China-linked Salt Typhoon APT compromised more US telecoms than previously known

China-linked Salt Typhoon targets telecoms

•

by Pierluigi Paganini / 1d

China-linked Salt Typhoon group that breached multiple US telecoms compromised more firms than previously known, WSJ says. The China-linked cyberespionage group Salt Typhoon targeted more US telecoms than previously known, as The Wall Street Journal reported . According to WSJ, wich cited people familiar with the matter, the Chinese cyberspies also compromised Charter Communications and Windstrea

Jan 5, 2025

PLAYFULGHOST backdoor supports multiple information stealing features

by Pierluigi Paganini / 1d

PLAYFULGHOST is a new malware family with capabilities including keylogging, screen and audio capture, remote shell access, and file transfer/execution. Google researchers analyzed a new malware family called PLAYFULGHOST that supports multiple features, including keylogging, screen and audio capture, remote shell, and file transfer/execution. The PLAYFULGHOST backdoor shares functionality with G

Nuclei flaw allows signature bypass and code execution

4 TTPs

•

by Pierluigi Paganini / 1d

A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to bypass signature checks and execute malicious code. A high-severity security flaw, tracked as CVE-2024-43405 (CVSS score of 7.4), in the open-source vulnerability scanner ProjectDiscovery’s Nuclei , could allow attackers to bypass signature checks and execute malicious code. The Wiz’s engineering team discov

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 27

by Pierluigi Paganini / 2d

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. 7-Zip Zero-Day Exploit Dropped: A New Playground for Infostealer & Supply Chain Attacks Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts The Mac Malware of 2024 Ransomware Vulnerability Matrix Inside FireScam : An In

Security Affairs newsletter Round 505 by Pierluigi Paganini – INTERNATIONAL EDITION

CVE-2024-49112 & 1 other

•

by Pierluigi Paganini / 2d

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Malicious npm packages target Ethereum developers US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT FireScam Android

End of feed