The Wuhan Earthquake Monitoring Center in China was targeted in a cyberattack allegedly backed by the United States, raising concerns about national security and the theft of sensitive seismic activity data.
Aqua has identified a new campaign targeting Apache Tomcat servers with weak security measures, distributing the Mirai botnet malware and cryptocurrency miners through brute force techniques and malicious web shells.
The Ubuntu Linux kernel has multiple vulnerabilities, including an out-of-bounds read vulnerability in the NTFS file system implementation, a local privilege escalation vulnerability in the OverlayFS module, a vulnerability in the IP-VLAN network driver, vulnerabilities in the netfilter subsystem, a vulnerability in the Ricoh R5C592 MemoryStick card reader driver, and a race condition vulnerability in the io_uring subsystem. These vulnerabilities allow attackers to gain elevated privileges, execute arbitrary code, or cause denial of service attacks, and can be exploited using publicly available exploits. Users are advised to update their kernels to the latest version and security teams should consider patching their workloads or restricting OverlayFS to root users only.
Despite recent improvements, developers need to enhance software supply chain security measures to protect against vulnerabilities and malicious attacks.
Multiple high-severity vulnerabilities have been discovered in the popular forms builder plugin for WordPress, posing a significant risk to website security.
CardioComm Solutions, a Toronto-based company specializing in cardiac monitoring and electrocardiogram software, experiences a significant cybersecurity incident causing temporary website unavailability and suspension of share trading. No personal health information compromised.
