CISA adds critical Apache RocketMQ flaw in KEV catalog | allinfosecnews.com

Sept. 10, 2023, 10 a.m. | SC Staff

SC Magazine feed for Strategy www.scmagazine.com

Attacks leveraging a critical Apache RocketMQ flaw, tracked as CVE-2023-33246, to deploy the DreamBus botnet and a Monero miner have prompted the inclusion of the bug in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, according to BleepingComputer.

agency apache attacks bleepingcomputer botnet bug catalog cisa critical cve cybersecurity deploy exploited exploited vulnerabilities flaw inclusion infrastructure infrastructure security kev kev catalog known exploited known exploited vulnerabilities known exploited vulnerabilities catalog miner monero rocketmq security vulnerabilities vulnerability management

More from www.scmagazine.com / SC Magazine feed for Strategy

Smoke and (screen) mirrors: A strange signed backdoor 7 hours ago | www.scmagazine.com

backdoor masquerading network security ops +6

Attackers evade detection by leveraging Microsoft Graph API 8 hours ago | www.scmagazine.com

api api security application security attackers +14

Stronger cybersecurity aimed by Menlo Security, Google Cloud collaboration 13 hours ago | www.scmagazine.com

cloud cloud security collaboration customers +10

US arrests ex-cyber consultant accused of IT firm extortion 13 hours ago | www.scmagazine.com

address arrest arrests bleepingcomputer +21

Accelerated patching found with CISA KEV catalog-listed flaws 13 hours ago | www.scmagazine.com

agency catalog cisa cisa kev +24

Path traversal vulnerability elimination in software sought by feds 13 hours ago | www.scmagazine.com

agency bleepingcomputer cybersecurity devsecops +17

New AI security bill unveiled in Senate 13 hours ago | www.scmagazine.com

act ai act aiml ai security +14

Data breach impacts Airsoft community site 13 hours ago | www.scmagazine.com

breach cloud cloud storage community +19

Details on 2021 Chemonics hack remain scant 13 hours ago | www.scmagazine.com

agency compromised critical-infrastructure-security cyberattack +11

Senior Security Engineer - Detection and Response

@ Fastly, Inc. | US (Remote)

View on infosec-jobs.com

Application Security Engineer

@ Solidigm | Zapopan, Mexico

View on infosec-jobs.com

Defensive Cyber Operations Engineer-Mid

@ ISYS Technologies | Aurora, CO, United States

View on infosec-jobs.com

Manager, Information Security GRC

@ OneTrust | Atlanta, Georgia

View on infosec-jobs.com

Senior Information Security Analyst | IAM

@ EBANX | Curitiba or São Paulo

View on infosec-jobs.com

Senior Information Security Engineer, Cloud Vulnerability Research

@ Google | New York City, USA; New York, USA

View on infosec-jobs.com