IT Security Newsletter

IT Security Newsletter - 2/18/2022

Written by Cadre | Fri, Feb 18, 2022

VMware Horizon servers are under active exploit by Iranian state hackers

Hackers aligned with the government of Iran are exploiting the critical Log4j vulnerability to infect unpatched VMware users with ransomware, researchers said on Thursday. Security firm SentinelOne has dubbed the group TunnelVision. The name is meant to emphasize TunnelVision's heavy reliance on tunneling tools and the unique way it deploys them. In the past, TunnelVision has exploited so-called 1-day vulnerabilities to hack organizations that have yet to install the fix. READ MORE...

Deep dive into hack against Iranian state TV yields wiper malware, other custom tools

The Jan. 27 hack of Iranian state broadcaster IRIB - which ran a message of support for opposition leaders and called for the assassination of Iran's supreme leader - came with previously unidentified wiper malware, according to research that suggests the incident was more destructive than initially assumed. Researchers with Check Point, a Tel Aviv-based cybersecurity company, published the findings Friday based on what it said were files and other forensic evidence connected to the hack. READ MORE...

Ukrainian DDoS Attacks Should Put US on Notice-Researchers

On Tuesday, institutions central to Ukraine's military and economy were hit with a wave of denial-of-service (DoS) attacks, which sparked an avalanche of headlines around the world. The strike itself had limited impact - but the larger implications for critical infrastructure beyond the Ukraine are worth noting, researchers said. The targets were core entities to Ukraine: the Armed Forces of Ukraine, the Ministry of Defense, Oschadbank (the State Savings Bank) and Privatbank. READ MORE...

Patch for Actively Exploited Flaw in Adobe Commerce and Magento Bypassed

Adobe has announced new patches for the Commerce and Magento e-commerce platforms after researchers discovered that a fix for an actively exploited zero-day can be bypassed. Adobe informed Commerce and Magento users on Sunday that it had become aware of a critical vulnerability that allows remote code execution without authentication. The software giant said the flaw, tracked as CVE-2022-24086, has been "??exploited in the wild in very limited attacks targeting Adobe Commerce merchants." READ MORE...

Intel Software and Firmware Updates Patch 18 High-Severity Vulnerabilities

Intel has released software and firmware updates to address many vulnerabilities found in the company's products. The chipmaker last week released 22 security advisories, including seven that have an overall severity rating of "high." These advisories describe 18 high-severity vulnerabilities, most of which can be exploited for privilege escalation. Others can lead to information disclosure or a denial of service (DoS) condition. READ MORE...

Researchers create exploit for critical Magento bug, Adobe updates advisory

Security researchers have created exploit code for CVE-2022-24086, the critical vulnerability affecting Adobe?Commerce and?Magento Open Source that Adobe patched in an out-of-band update last Sunday. The vulnerability, which Adobe saw being "exploited in the wild in very limited attacks," received a severity score of 9.8 out of 10, and adversaries exploiting it can achieve remote code execution on affected systems without the need to authenticate. READ MORE...

Severe WordPress Plug-In UpdraftPlus Bug Threatens Backups

The WordPress plug-in "UpdraftPlus" was patched on Wednesday to correct a vulnerability that left sensitive backups at risk, potentially exposing personal information and authentication data. UpdraftPlus is a tool for creating, restoring and migrating backups for WordPress files, databases, plug-ins and themes. According to its website, UpdraftPlus is used by more than three million WordPress websites, including those from organizations like Microsoft, Cisco and NASA. READ MORE...

  • ...in 1745, Italian physicist Alessandro Volta, the inventor of the electric battery, is born in Milan.
  • ...in 1885, Mark Twain's "The Adventures of Huckleberry Finn" is first published in the United States.
  • ...in 1930, astronomer Clyde Tombaugh discovers the dwarf planet Pluto while studying photographs taken at Arizona's Lowell Observatory.
  • ...in 1977, the Space Shuttle Enterprise takes its first test "flight", attached to the top of a Boeing 747.