all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers Exploit MinIO Storage System Vulnerabilities to Compromise Servers

Add to bookmarks
Sept. 4, 2023, 2:13 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

An unknown threat actor has been observed weaponizing high-severity security flaws in the MinIO high-performance object storage system to achieve unauthorized code execution on affected servers.
Cybersecurity and incident response firm Security Joes said the intrusion leveraged a publicly available exploit chain to backdoor the MinIO instance.
The comprises CVE-2023-28432 (CVSS score: 7.5) and

actor backdoor code code execution compromise cve cve-2023-28432 cvss cybersecurity exploit flaws hackers high incident incident response instance intrusion minio object object storage performance response security security flaws security joes servers severity storage system threat threat actor vulnerabilities

Visit resource

More from thehackernews.com / The Hacker News

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign 2 hours ago | thehackernews.com
actor apt28 called campaign +23
New Guide: How to Scale Your vCISO Services Profitably 7 hours ago | thehackernews.com
access business can ciso +18
Mirai Botnet Exploits Ivanti Connect Secure Flaws for Malicious Payload Delivery 7 hours ago | thehackernews.com
authentication authentication bypass botnet bypass +27
Critical F5 Central Manager Vulnerabilities Allow Enable Full Device Takeover 11 hours ago | thehackernews.com
accounts actor administrator attackers +18
A SaaS Security Challenge: Getting Permissions All in One Place 1 day, 3 hours ago | thehackernews.com
access all in apps base +16
New Spectre-Style 'Pathfinder' Attack Targets Intel CPU, Leak Encryption Keys and Data 1 day, 3 hours ago | thehackernews.com
academics advanced advanced encryption aes +30
The Fundamentals of Cloud Security Stress Testing 1 day, 7 hours ago | thehackernews.com
assets attackers cloud cloud security +17
Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version 1 day, 7 hours ago | thehackernews.com
aim analysis anti-analysis bypass +19
Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites 1 day, 11 hours ago | thehackernews.com
accounts actively exploited admin bogus +25

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information System Security Officer / Auditor

@ Peraton | Washington, DC, United States
View on infosec-jobs.com

Senior Cloud Security Engineer

@ Alludo | US | Boston, MA, US | San Francisco, CA, US | Austin, TX, US
View on infosec-jobs.com

Tier 3 - Malware Analyst, SME

@ Resource Management Concepts, Inc. | Quantico, Virginia, United States
View on infosec-jobs.com

Temp to Hire Senior DevSecOps Engineer

@ Scientific Systems Company, Inc. | Burlington, Massachusetts, United States
View on infosec-jobs.com

Security Engineer III - Splunk | SIEM

@ JPMorgan Chase & Co. | Plano, TX, United States
View on infosec-jobs.com

Information Systems Security Officer / Auditor

@ Peraton | Washington, DC, United States
View on infosec-jobs.com
View more jobs