https://safirsoft.com Microsoft detects zero-day SolarWinds sensitivity under active attack

The flaw allows attackers to execute malicious code on machines hosting Serv-U products.

SolarWinds, the company that was the center of the supply chain attack that disrupted nine US agencies and 100 private companies, is trying to contain a new security threat: a critical online vulnerability. Produce.

READ MORE Russian hackers attacked the US government's supply chain with a massive attack. In an advisory issued Friday, the second company, Microsoft, discovered the vulnerabilities and reported them privately to SolarWinds. SolarWinds said the attacks were unrelated to the supply chain attack discovered in December. "Microsoft has provided evidence of a limited, targeted impact on customers, although SolarWinds does not currently estimate the number of customers directly affected by the vulnerability," company officials wrote. SolarWinds is not aware of the identities of potential customers affected by it. “The maker of these two products is affected by this vulnerability, which allows attackers to remotely execute malicious code on vulnerable systems.

If it is exploited, the attacker can gain access and privilege to Serv-U hosting machines, then can An attacker can install software and view, modify, or delete data or run software on a damaged system.U 15.2.3 HF1, released May 5, and all previous versions are available.

Advertising

SolarWinds attacks repair to reduce attacks during The company is working on a permanent solution People using Serv-U version 15.2.3 HF1 must use Troubleshooting (HF) 2. Those using Serv-U 15.2 .3 Serv-U 15.2.3 HF1, then use Serv -U 15.2.3 HF2 Serv-U versions running before 15.2.3 must be upgraded to Serv-U 15.2.3, Serv-U 15.2.3 HF1, and Serv-U 15.2.3 HF2 The company advises customers to install the fixes on Immediately Quick fixes are available here Disabling SSH access also prevents exploitation READ MORE ~18,000 backdoor loading agencies planted by Cozy hackers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Bear. Last year the federal government launched a supply chain attack on hackers for Russia's FSB, the successor to the KGB, which for decades has carried out an espionage-focused hack. The campaign used vulnerabilities in the SolarWinds network to control the company's software development system based in Austin, Texas.

Hackers used this access to update malware on approximately 18,000 customers of SolarWinds' Orion network management products. Of these clients, approximately 110 clients performed a follow-up attack that led to the installation of a next-stage shipment that destroys proprietary information. Malware installed in Sunburst attack campaigns is notorious. Once again, SolarWinds said the exploits now have nothing to do with it.

Continue to study a different set of attackers that researchers have linked to the Chinese government. These attackers installed malware that researchers dubbed SuperNova. The SolarWinds system has also been targeted by actors threatening China. At least one US government agency was targeted in the operation.

Microsoft detects zero-day SolarWinds sensitivity under active attack
microsoft-detects-zero-day-solarwinds-sensitivity-under.html

https://safirsoft.com Vaccines, reopening and worker rebellion: The great technological row is back in office

Vaccines, reopening and worker rebellion: The great technological row is back in office

CEOs want workers back to their desks. For employees and other virus programs. Across the United States, the leaders of tech giants like Apple, Google...
https://safirsoft.com Brave.com, with the help of Google, squeezes malware

Brave.com, with the help of Google, squeezes malware

With a valid TLS certificate, faux Bravė.com can fool even the most secure of people. Malware that controls browsers and steals sensitive data.

...
https://safirsoft.com A privacy battle that Apple isn't fighting

A privacy battle that Apple isn't fighting

There are no browser-level privacy settings that California implements in Safari, iOS.

For at least a decade, privacy advocates have yearned ...

https://safirsoft.com Only 3G Kindles started their long and slow death this year

Only 3G Kindles started their long and slow death this year

3G 2021/2022 sunset affects even the eighth generation Kindle (2016).

On Wednesday, Amazon sent out an email notification to customers who pu...

https://safirsoft.com Huawei's latest flagship phone has HarmonyOS, Qualcomm SoC and lacks 5G

Huawei's latest flagship phone has HarmonyOS, Qualcomm SoC and lacks 5G

Faced with export bans and chip shortages, Huawei is ignoring what it can find.

Despite facing global chip shortage, US export ban and sharp ...

https://safirsoft.com Malicious PyPI packages steal developer data and inject code

Malicious PyPI packages steal developer data and inject code

The researchers warned that you should expect to see more malicious "Frankenstein" packages.

Open source packages estimated to have been down...