all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Over 1,400 CrushFTP servers vulnerable to actively exploited bug

Add to bookmarks
April 25, 2024, 4:40 p.m. | Sergiu Gatlan

BleepingComputer www.bleepingcomputer.com

​Over 1,400 CrushFTP servers exposed online were found vulnerable to attacks currently targeting a critical severity server-side template injection (SSTI) vulnerability previously exploited as a zero-day. [...]

actively exploited attacks bug critical crushftp exploited exposed found injection security server servers severity ssti targeting template template injection vulnerability vulnerable zero-day

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Iranian hackers pose as journalists to push backdoor malware 1 day ago | www.bleepingcomputer.com
actor apt42 attacks backdoor +20
Android bug can leak DNS traffic with VPN kill switch enabled 1 day, 17 hours ago | www.bleepingcomputer.com
android android devices block bug +15
Android bug leaks DNS queries even when VPN kill switch is enabled 1 day, 17 hours ago | www.bleepingcomputer.com
android android devices block bug +14
NSA warns of North Korean hackers exploiting weak DMARC email policies 1 day, 19 hours ago | www.bleepingcomputer.com
apt43 attacks authentication dmarc +19
Google rolls back reCaptcha update to fix Firefox issues 1 day, 21 hours ago | www.bleepingcomputer.com
back bug captcha firefox +11
NATO and EU condemn Russia's cyberattacks against Germany, Czechia 1 day, 22 hours ago | www.bleepingcomputer.com
apt28 campaign countries cyber +14
Microsoft rolls out passkey auth for personal Microsoft accounts 1 day, 23 hours ago | www.bleepingcomputer.com
accounts auth authenticate biometric +20
CEO who sold fake Cisco devices to US military gets 6 years in prison 2 days, 16 hours ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14
Bitwarden launches new MFA Authenticator app for iOS, Android 2 days, 18 hours ago | www.bleepingcomputer.com
android android devices app authenticator +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cryptography Software Developer

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Lead Consultant, Geology

@ WSP | Richmond, VA, United States
View on infosec-jobs.com

BISO Cybersecurity Director

@ ABM Industries | Alpharetta, GA, United States
View on infosec-jobs.com

TTECH Analista de ciberseguridad

@ Telefónica | LIMA, PE
View on infosec-jobs.com

TRANSCOM IGC - Cloud Security Engineer

@ IT Partners, Inc | St. Louis, Missouri, United States
View on infosec-jobs.com

Sr Cyber Threat Hunt Researcher

@ Peraton | Beltsville, MD, United States
View on infosec-jobs.com
View more jobs