all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

ISC StormCast for Wednesday, April 24th, 2024

Add to bookmarks
April 24, 2024, 2 a.m. | Dr. Johannes B. Ullrich

SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast isc.sans.edu

Struts2 devmode Still a Problem Ten Years Later

https://isc.sans.edu/forums/diary/Struts%20%22devmode%22%3A%20Still%20a%20problem%20ten%20years%20later%3F/30866/

Analyzing Forest Blizard's Custom Post-Compromise Tool for exploiting CVE-2022-38028

https://www.microsoft.com/en-us/security/blog/2024/04/22/analyzing-forest-blizzards-custom-post-compromise-tool-for-exploiting-cve-2022-38028-to-obtain-credentials/

April 2024 Exchange Server Hotfix Update

https://techcommunity.microsoft.com/t5/exchange-team-blog/released-april-2024-exchange-server-hotfix-updates/ba-p/4120536

CVE-2024-2389: Command Injection Vulnerability in Progress Flowmon

https://rhinosecuritylabs.com/research/cve-2024-2389-in-progress-flowmon/

GuptiMiner: Hijacking Antivirus Updates for Distributing Backdoors and Casual Mining

https://decoded.avast.io/janrubin/guptiminer-hijacking-antivirus-updates-for-distributing-backdoors-and-casual-mining/

antivirus antivirus updates april backdoors business command command injection command injection vulnerability compromise computer cve cve-2024 cyber cybersecurity daily devmode exchange exchange server exploiting flowmon forest forest blizard guptiminer hacking hijacking hotfix infosec injection internet isc mining network printnightmware problem progress security server struts2 tool update updates vulnerability

Visit resource

More from isc.sans.edu / SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

ISC StormCast for Friday, May 3rd, 2024 2 days, 19 hours ago | isc.sans.edu
arubaos buffer buffer overflow buffer overflow vulnerabilities +22
ISC StormCast for Thursday, May 2nd, 2024 3 days, 19 hours ago | isc.sans.edu
amplification attack aws aws s3 +29
ISC StormCast for Wednesday, May 1st, 2024 4 days, 11 hours ago | isc.sans.edu
attacks business code code execution +26
ISC StormCast for Tuesday, April 30th, 2024 5 days, 19 hours ago | isc.sans.edu
abuse account android android tv +28
ISC StormCast for Monday, April 29th, 2024 6 days, 19 hours ago | isc.sans.edu
april brute forcing business campaigns +26
ISC StormCast for Friday, April 26th, 2024 1 week, 2 days ago | isc.sans.edu
alan april botnet business +28
ISC StormCast for Thursday, April 25th, 2024 1 week, 3 days ago | isc.sans.edu
api apps april arcanedoor +30
ISC StormCast for Wednesday, April 24th, 2024 1 week, 4 days ago | isc.sans.edu
antivirus antivirus updates april backdoors +38
ISC StormCast for Tuesday, April 23rd, 2024 1 week, 5 days ago | isc.sans.edu
april bug business computer +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com

Vice President, Cyber Operations Engineer

@ BlackRock | LO9-London - Drapers Gardens
View on infosec-jobs.com
View more jobs