Tag: networks

Source URL: https://unit42.paloaltonetworks.com/?p=138128 Source: Unit 42 Title: CL-STA-0048: An Espionage Operation Against High-Value Targets in South Asia Feedly Summary: A Chinese-linked espionage campaign targeted entities in South Asia using rare techniques like DNS exfiltration, with the aim to steal sensitive data. The post CL-STA-0048: An Espionage Operation Against High-Value Targets in South Asia appeared first…

Alerts: CISA Adds One Known Exploited Vulnerability to Catalog

Jan 29, 2025

—

by

Source URL: https://www.cisa.gov/news-events/alerts/2025/01/29/cisa-adds-one-known-exploited-vulnerability-catalog Source: Alerts Title: CISA Adds One Known Exploited Vulnerability to Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation, as confirmed by Fortinet. CVE-2025-24085 Apple Multiple Products Use-After-Free Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors…

Cloud Blog: Adversarial Misuse of Generative AI

Jan 29, 2025

—

by

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/adversarial-misuse-generative-ai/ Source: Cloud Blog Title: Adversarial Misuse of Generative AI Feedly Summary: Rapid advancements in artificial intelligence (AI) are unlocking new possibilities for the way we work and accelerating innovation in science, technology, and beyond. In cybersecurity, AI is poised to transform digital defense, empowering defenders and enhancing our collective security. Large language…

Bulletins: Vulnerability Summary for the Week of December 16, 2024

—

by

Source URL: https://www.cisa.gov/news-events/bulletins/sb24-358 Source: Bulletins Title: Vulnerability Summary for the Week of December 16, 2024 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 1000 Projects–Attendance Tracking Management System A vulnerability has been found in 1000 Projects Attendance Tracking Management System 1.0 and classified as critical. Affected by this vulnerability is…

Bulletins: Vulnerability Summary for the Week of December 2, 2024

—

by

Source URL: https://www.cisa.gov/news-events/bulletins/sb24-344 Source: Bulletins Title: Vulnerability Summary for the Week of December 2, 2024 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description8 Published CVSS Score Source Info SailPoint Technologies–IdentityIQ IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p2, IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p5, IdentityIQ 8.2 and all 8.2…

Cloud Blog: A new flexible, simplified, and more secure way to configure GKE cluster connectivity

—

by

Source URL: https://cloud.google.com/blog/products/containers-kubernetes/simplifying-gke-cluster-and-control-plane-networking/ Source: Cloud Blog Title: A new flexible, simplified, and more secure way to configure GKE cluster connectivity Feedly Summary: Google Kubernetes Engine (GKE) provides users with a lot of options when it comes to configuring their cluster networks. But with today’s highly dynamic environments, GKE platform operators tell us that they want…

Schneier on Security: New VPN Backdoor

—

by

Source URL: https://www.schneier.com/blog/archives/2025/01/new-vpn-backdoor.html Source: Schneier on Security Title: New VPN Backdoor Feedly Summary: A newly discovered VPN backdoor uses some interesting tactics to avoid detection: When threat actors use backdoor malware to gain access to a network, they want to make sure all their hard work can’t be leveraged by competing groups or detected by…

The Register: Someone is slipping a hidden backdoor into Juniper routers across the globe, activated by a magic packet

Jan 25, 2025

—

by

Source URL: https://www.theregister.com/2025/01/25/mysterious_backdoor_juniper_routers/ Source: The Register Title: Someone is slipping a hidden backdoor into Juniper routers across the globe, activated by a magic packet Feedly Summary: Who could be so interested in chips, manufacturing, and more, in the US, UK, Europe, Russia… Someone has been quietly backdooring selected Juniper routers around the world in key…

Rekt: Phemex – Rekt

Jan 24, 2025

—

by