News シスコ、ルートアクセスを可能にするセキュアFMCの欠陥の重大性を警告
シスコは、セキュア・ファイアウォール・マネジメント・センター(FMC)ソフトウェアに存在する2つの最大深刻度の脆弱性を修正するセキュリティ・アップデートをリリースした。 Secure FMC は、管理者が Cisco ファイアウォールを管理...
authentication bypass
News 
News Hackers target Microsoft Entra accounts in device code vishing attacks
Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code...
News Critical infra Honeywell CCTVs vulnerable to auth bypass flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of a critical vulnerability in multiple Hone...
News ハッカー、自社ソフトウェアの欠陥を利用してSmarterToolsのネットワークに侵入
SmarterTools社は先週、Warlockランサムウェア集団が電子メールシステムを侵害した後、同社のネットワークに侵入したことを確認したが、ビジネス・アプリケーションやアカウント・データへの影響はなかった。 同社のチーフ・コマーシャル...
News SolarWinds warns of critical Web Help Desk RCE, auth bypass flaws
SolarWinds has released security updates to patch critical authentication bypass and remote command execution vulnerabil...
News Fortinet blocks exploited FortiCloud SSO zero day until patch is ready
Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerab...
News Over 6,000 SmarterMail servers exposed to automated hijacking attacks
Nonprofit security organization Shadowserver has found over 6,000 SmarterMail servers exposed online and likely vulnerab...
News Nearly 800,000 Telnet servers exposed to remote attacks
Internet security watchdog Shadowserver tracks nearly 800,000 IP addresses with Telnet fingerprints amid ongoing attacks...
News Hackers exploit critical telnetd auth bypass flaw to get root
A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been pr...
News Fortinet confirms critical FortiCloud auth bypass not fully patched
Days after admins began reporting that their fully patched firewalls are being hacked, Fortinet confirmed it's working t...