The CyberWire Daily Briefing
- Get link
- X
- Other Apps
"Plex urges security patch" and "Norwegian dam sabotage blamed on pro-Russian hackers."
Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 17 August 2025, 2255 UTC.
Content and Source: "The CyberWire Daily Briefing."
URL-- https://thecyberwire.com/newsletters/daily-briefing/14/156
Please check URL or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybersecurityjournal.net).
V14 | Issue 156 | 8.15.25
Daily Briefing for 08.15.25
SummaryBy the CyberWire staff
At a glance.
- Plex releases urgent security patch.
- Norwegian dam sabotage blamed on pro-Russian hackers.
- New HTTP/2 flaw can be used to launch major DDoS attacks.
- Plex releases urgent security patch.
- Norwegian dam sabotage blamed on pro-Russian hackers.
- New HTTP/2 flaw can be used to launch major DDoS attacks.
Plex releases urgent security patch.
Media streaming platform Plex emailed users yesterday urging them to update their media servers as soon as possible due to a recently patched vulnerability, BleepingComputer reports. The flaw hasn't yet been assigned a CVE-ID, and the company hasn't shared additional details. The flaw affects Plex Media Server versions 1.41.7.x to 1.42.0.x.
BleepingComputer notes that Plex rarely emails customers about individual vulnerabilities, so users should take the warning seriously and update to version 1.42.1.10060.
Media streaming platform Plex emailed users yesterday urging them to update their media servers as soon as possible due to a recently patched vulnerability, BleepingComputer reports. The flaw hasn't yet been assigned a CVE-ID, and the company hasn't shared additional details. The flaw affects Plex Media Server versions 1.41.7.x to 1.42.0.x.
BleepingComputer notes that Plex rarely emails customers about individual vulnerabilities, so users should take the warning seriously and update to version 1.42.1.10060.
Norwegian dam sabotage blamed on pro-Russian hackers.
The Norwegian Police Security Service (PST) has attributed an April cyberattack on a dam to pro-Russian hackers, the Associated Press reports. The hackers took control of the Bremanger dam's control systems and opened its floodgate, releasing more than seven million gallons of water before the incident was detected and remediated four hours later. The river was far below flood levels, so no damage was caused.
In a speech on Wednesday, PST director Beate Gangås said the incident appeared to be a display of the hackers' capabilities rather than an attempt to cause real damage. "They don’t necessarily aim to cause destruction, but to show what they are capable of," Gangås said. "The purpose of these kinds of actions is to exert influence and create fear or unrest in the population."
The Norwegian Police Security Service (PST) has attributed an April cyberattack on a dam to pro-Russian hackers, the Associated Press reports. The hackers took control of the Bremanger dam's control systems and opened its floodgate, releasing more than seven million gallons of water before the incident was detected and remediated four hours later. The river was far below flood levels, so no damage was caused.
In a speech on Wednesday, PST director Beate Gangås said the incident appeared to be a display of the hackers' capabilities rather than an attempt to cause real damage. "They don’t necessarily aim to cause destruction, but to show what they are capable of," Gangås said. "The purpose of these kinds of actions is to exert influence and create fear or unrest in the population."
New HTTP/2 flaw can be used to launch major DDoS attacks.
Security researchers from Imperva and Tel Aviv University discovered a design flaw in HTTP/2 implementations that can be exploited to launch large-scale DDoS attacks, SecurityWeek reports. The flaw is a variant of the HTTP/2 Rapid Reset vulnerability that surfaced in 2023. Imperva has dubbed the new variant "MadeYouReset."
Imperva explains, "[T]he attack moves beyond resetting streams directly and instead targets the server’s behavior when handling invalid (but protocol-compliant) frames. But here’s the twist: the client never sends a single RST_STREAM frame. Instead, it sends carefully crafted frames that violate protocol expectations in subtle ways. The server, upon processing these frames, detects an invalid internal state and reacts by resetting the stream or the entire connection, essentially performing the attack on itself."
Multiple vendors, including Apache, Fastly, and Mozilla, have issued patches or mitigations for the flaw, according to Carnegie Mellon.
Security researchers from Imperva and Tel Aviv University discovered a design flaw in HTTP/2 implementations that can be exploited to launch large-scale DDoS attacks, SecurityWeek reports. The flaw is a variant of the HTTP/2 Rapid Reset vulnerability that surfaced in 2023. Imperva has dubbed the new variant "MadeYouReset."
Imperva explains, "[T]he attack moves beyond resetting streams directly and instead targets the server’s behavior when handling invalid (but protocol-compliant) frames. But here’s the twist: the client never sends a single RST_STREAM frame. Instead, it sends carefully crafted frames that violate protocol expectations in subtle ways. The server, upon processing these frames, detects an invalid internal state and reacts by resetting the stream or the entire connection, essentially performing the attack on itself."
Multiple vendors, including Apache, Fastly, and Mozilla, have issued patches or mitigations for the flaw, according to Carnegie Mellon.
Notes.
Today's issue includes events affecting Norway, Russia, and the United States.
Sponsored EventsHip Conf 25 Charleston (Charleston, SC, Oct 7 - 9, 2025) Join cybersecurity leaders, innovators, and practitioners at HIP Conf 25 for two days of keynotes, expert sessions, and 2025’s top threat insights. Explore the latest in AI, defense strategies, and compliance. Secure your edge—register now.Selected Reading
Today's issue includes events affecting Norway, Russia, and the United States.
Attacks, Threats, and Vulnerabilities
Telco giant Colt suffers attack, takes systems offline (The Register) : London-based multinational takes customer portal and Voice API platform offline as 'protective measure' following breach
Hackers Breach Canadian Government Via Microsoft Exploit (BankInfoSecurity) Hackers breached a sensitive database containing office locations and personal details of elected officials and staff in Canada's House of Commons. Hackers were
Cisco Discloses Critical RCE Flaw in Firewall Management Software (Infosecurity Magazine) Cisco has issued a software update to address the vulnerability, which can allow an unauthenticated, remote attacker to inject arbitrary shell commands
Telco giant Colt suffers attack, takes systems offline (The Register) : London-based multinational takes customer portal and Voice API platform offline as 'protective measure' following breach
Hackers Breach Canadian Government Via Microsoft Exploit (BankInfoSecurity) Hackers breached a sensitive database containing office locations and personal details of elected officials and staff in Canada's House of Commons. Hackers were
Cisco Discloses Critical RCE Flaw in Firewall Management Software (Infosecurity Magazine) Cisco has issued a software update to address the vulnerability, which can allow an unauthenticated, remote attacker to inject arbitrary shell commands
Technologies, Techniques, and Standards
New NIST Concept Paper Outlines AI-Specific Cybersecurity Framework (Hackread) NIST has released a concept paper for new control overlays to secure AI systems, built on the SP 800-53 framework. Learn what the new framework covers and why experts are calling for more detailed descriptions.
Taiwan announces measures to protect hospitals from hackers (Focus Taiwan) The Ministry of Digital Affairs (MODA) on Friday announced plans to strengthen cybersecurity resilience in Taiwan's medical sector, following cyberattacks on at least two hospitals earlier this year that were linked to a Chinese hacker.
Industry EventsFor a complete running list of events, please visit the Event Tracker.
New NIST Concept Paper Outlines AI-Specific Cybersecurity Framework (Hackread) NIST has released a concept paper for new control overlays to secure AI systems, built on the SP 800-53 framework. Learn what the new framework covers and why experts are calling for more detailed descriptions.
Taiwan announces measures to protect hospitals from hackers (Focus Taiwan) The Ministry of Digital Affairs (MODA) on Friday announced plans to strengthen cybersecurity resilience in Taiwan's medical sector, following cyberattacks on at least two hospitals earlier this year that were linked to a Chinese hacker.
For a complete running list of events, please visit the Event Tracker.
Events
HackAICon 2025 (Lisbon, Portugal, Sep 25, 2025) The first conference dedicated to combining AI and Ethical Hacking. We're bringing together OffSec pros, hackers, and leading researchers to find practical ways of using AI to secure the internet. Learn about the latest AI Hacking cosmic trends and connect with fellow professionals in engaging conversations. We banned sales pitches from the event - just knowledge sharing, leadership and technical insights.
Sponsor & SupportGrow your brand, generate leads, and fill your funnel.With the industry’s largest B2B podcast network, popular newsletters, and influential readers and listeners all over the world, companies trust the CyberWire to get the message out. Learn more.
HackAICon 2025 (Lisbon, Portugal, Sep 25, 2025) The first conference dedicated to combining AI and Ethical Hacking. We're bringing together OffSec pros, hackers, and leading researchers to find practical ways of using AI to secure the internet. Learn about the latest AI Hacking cosmic trends and connect with fellow professionals in engaging conversations. We banned sales pitches from the event - just knowledge sharing, leadership and technical insights.
- Get link
- X
- Other Apps
Comments
Post a Comment
Please leave a comment about our recent post.