Years-old security vulnerabilities remain a common attack method for ransomware attacks because organisations aren’t applying the patches to fix them.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[SANS ISC] CVE-2019-9670: Zimbra Collaboration Suite XXE vulnerability, (Sat, Jun 26th)
This XML External Entity injection (XXE) vulnerability disclosed in March 2019 is still actively scanned for a vulnerable mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10. This exploit attempts to read the Zimbra configuration file that contains an LDAP password for the zimbra account. Sample Log 20210625-144918: 192.168.25.9:443-45.146.165.123:41062 data POST /Autodiscover/Autodiscover.xml HTTP/1.1 Host: […]
[SecurityWeek] Water Sector Security Report Released Just as Another Water Plant Hack Comes to Light
read more Source: Read More (SecurityWeek RSS Feed)
[BleepingComputer] Windows 10 now lets you install WSL with a single command
Microsoft says the Windows Subsystem for Linux (WSL) can now be installed on Windows 10, version 2004 or later using a single terminal command. […] Source: Read More (BleepingComputer)