Getting Unauthenticated Remote Code Execution on the Logsign Unified SecOps Platform | allinfosecnews.com

July 1, 2024, 5 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Earlier this year, the Trend Micro Zero Day Initiative (ZDI) acquired several vulnerabilities in the Logsign Unified SecOps Platform. These were all reported to the ZDI by Mehmet INCE (@mdisec) from PRODAFT.com. According to Logsign’s website:

Logsign provides comprehensive visibility and control of your data lake by allowing security analysts to collect and store unlimited data, investigate and detect threats, and respond automatically.

Logsign offers a single, unified whole security operation platform to alleviate the challenges associated with deploying …

analysts code code execution com control data data lake initiative micro platform prodaft remote code remote code execution secops security trend trend micro trend micro zero day initiative unauthenticated visibility vulnerabilities website zdi zero day initiative

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Malware development trick 42: Stealing data via legit Discord Bot API. Simple C example 8 hours ago | malware.news

api application bot concept +25

Velvet Ant’s Strategic Targeting: A Long-Term Cyber Espionage Campaign Against F5 BIG-IP Systems 8 hours ago | malware.news

advanced advanced persistent threat adversary ant +21

Affirm says Evolve Bank data breach also compromised some of its customers 9 hours ago | malware.news

8-k affirm amp attack +24

Give a lead to save a child 10 hours ago | malware.news

abuse camera child child sexual abuse +13

365 Total Backup Changes July 2024 10 hours ago | malware.news

article backup backups change +11

Deep Dive into Blockchain Security: Vulnerabilities and Protective Measures 10 hours ago | malware.news

applications article author blockchain +12

Google Summer Of Code 2024 In Stratosphere. Blog for the first month of Sekhar Kumar … 12 hours ago | malware.news

article blog code dash +6

Release notes: Mutexes in TI Lookup, new YARA rules, extractors, and more 12 hours ago | malware.news

any.run capabilities config detection +15

Vulnerabilities in PanelView Plus devices could lead to remote code execution 21 hours ago | malware.news

attackers automation can code +17

DHS Architecture Engineering Support

@ General Dynamics Information Technology | USA VA Home Office (VAHOME)

View on infosec-jobs.com

AWS DevOps Engineer

@ Booz Allen Hamilton | USA, VA, Alexandria (6361 Walker Ln)

View on infosec-jobs.com

Senior Engineering Manager | SI&WS

@ Boeing | USA - Saint Charles, MO

View on infosec-jobs.com

SOFTWARE ENGINEER III - Java Full Stack

@ Walmart | IN TN CHENNAI Home Office RMZ Millenia Biz Park

View on infosec-jobs.com

Senior, Software Engineer - Java Lead

@ Walmart | IN TN CHENNAI Home Office RMZ Millenia Biz Park

View on infosec-jobs.com

Full Stack Software Engineer (Associate/Mid-Level))

@ Boeing | USA - Mountain View, CA

View on infosec-jobs.com