[HackerNews] HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack

A critical security vulnerability has been disclosed in HAProxy, a widely used open-source load balancer and proxy server, that could be abused by an adversary to possibly smuggle HTTP requests, resulting in unauthorized access to sensitive data and execution of arbitrary commands, effectively opening the door to an array of attacks.
Tracked as CVE-2021-40346, the Integer Overflow vulnerability

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] Hackers Demand $70 Million as Kaseya Ransomware Victim Toll Nears 1,500 Firms

All posts, Security Week

IT management software maker Kaseya on Monday said the recent ransomware attack impacted up to 1,500 organizations, but claimed there was no evidence of malicious modifications to product source code. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[ZDNet] Black Hat: BadAlloc bugs expose millions of IoT devices to hijack

All posts, ZDNet

BadAlloc vulnerabilities impact millions of devices worldwide. Source: Read More (Latest topics for ZDNet in Security)

Read More

Resursseja kyberharjoitteluun

All posts

Kyberharjoitus on erinomainen tapa testata organisaation varautumista ja prosesseja kyberkriisin varalta. Alla on listattuna resursseja kyberharjoittelua varten. Kyberturvallisuuskeskuksen kyberharjoitusohje pitää sisällään kaiken, mitä harjoituksen järjestäjä tarvitsee käynnistääkseen organisaationsa harjoitusohjelman. Huoltovarmuuskriittiset organisaatiot saavat tarvittaessa apua Kyberturvallisuuskeskuksen harjoitustoiminnan tukitiimiltä. Twitter-tili @badthingsdaily sisältää runsaasti ideoita kyberharjoituksen skenaariota, eli kuvitteellisten tapahtumien tarinaa, varten. MSB:n kyberharjoitusohje on kattava, englanninkielinen paketti […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.