[HackerNews] Critical RCE Flaw in ForgeRock Access Manager Under Active Attack

Cybersecurity agencies in Australia and the U.S. are warning of an actively exploited vulnerability impacting ForgeRock’s OpenAM access management solution that could be leveraged to execute arbitrary code on an affected system remotely.
“The [Australian Cyber Security Centre] has observed actors exploiting this vulnerability to compromise multiple hosts and deploy additional malware and tools,”

Source: Read More (The Hacker News)

You might be interested in …

[TheRecord] Almost 2,000 Exchange servers hacked using ProxyShell exploit

Almost 2,000 Microsoft Exchange email servers have been hacked over the past two days and infected with backdoors after owners did not install patches for a collection of vulnerabilities known as ProxyShell. The attacks, detected by security firm Huntress Labs, come after proof-of-concept exploit code was published online earlier this month, and scans for vulnerable systems began […]

Read More

[BleepingComputer] Audi, Volkswagen customer data being sold on a hacking forum

Audi and Volkswagen customer data is being sold on a hacking forum after allegedly being stolen from an exposed Azure BLOB container. […] Source: Read More (BleepingComputer)

Read More

[TheRecord] Robinhood discloses security breach and extortion attempt

Stock trading and investing app Robinhood said that hackers breached the account of a customer support employee, stole the personal data of millions of users, and then tried to extort the company for a ransom payment when it detected the intrusion. The hack took last Wednesday, on November 3, according to emails obtained by The Record that […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.