Vulnerability in Xerox VersaLink Printers Could Enable Lateral Movement Attacks

68/68 Wednesday, February 19, 2025 Security researchers at Rapid7 have discovered vulnerabilities in Xerox VersaLink multifunction printers, identified as CVE-2024-12510 and CVE-2024-12511. These flaws affect VersaLink C7020, C7025, and C7030 models and allow attackers to exploit a pass-back attack to steal authentication credentials used in LDAP and SMB/FTP protocols. The issue arises from the ability […]

ThaiCERT

February 19, 2025

South Korea Temporarily Suspends DeepSeek App Downloads Over Data Protection Concerns

67/68 Wednesday, February 19, 2025 South Korea’s Personal Information Protection Commission (PIPC) has announced a temporary suspension of downloads for the Chinese AI chatbot app DeepSeek starting February 15, 2025. The suspension will remain in place until the app provider ensures compliance with the country’s data protection regulations. However, the DeepSeek website remains accessible and […]

ThaiCERT

February 19, 2025

New Backdoor Malware Uses Telegram Bot API for Remote Control

66/68 Tuesday, February 18, 2025 Security researchers from Netskope Threat Labs have discovered a new backdoor malware written in Golang, which uses the Telegram Bot API as a communication channel between attackers and the malware. This allows attackers to easily send commands and receive data directly through Telegram chats. Researchers believe the malware may have […]

ThaiCERT

February 18, 2025

Russian-linked Group Storm-2372 Uses “Device Code Phishing” to Target Government Agencies and Organizations

65/68 Tuesday, February 18, 2025 Security researchers from Microsoft have warned that the cyber threat group known as Storm-2372, which has ties to Russia, has been using a “Device Code Phishing” technique to steal authentication tokens from government agencies, non-governmental organizations (NGOs), and various industries since August 2024. This technique deceives users into logging into […]

ThaiCERT

February 18, 2025

Hackers Exploit Vulnerability in Palo Alto Networks’ PAN-OS Firewall

64/68 Monday, February 17, 2025 Hackers are actively exploiting CVE-2025-0108, a vulnerability in Palo Alto Networks’ PAN-OS firewall, which allows attackers to bypass authentication and gain access to the web-based management system without requiring a password. While this vulnerability does not enable remote code execution directly, it poses a significant security risk to sensitive data. […]

ThaiCERT

February 17, 2025

RansomHub Rises as a Major Ransomware Threat in 2024

63/68 Monday, February 17, 2025 Group-IB has revealed that RansomHub has become the most influential ransomware group in 2024, following the takedown of major ransomware gangs such as ALPHV and LockBit by law enforcement operations. RansomHub operates under the Ransomware-as-a-Service (RaaS) model and selectively recruits affiliates from previously dismantled cybercriminal groups. This approach has enabled […]

ThaiCERT

February 17, 2025

Ivanti Releases Patches for Three Critical Vulnerabilities in Connect Secure and Policy Secure

62/68 Friday, February 14, 2025 Ivanti has released security updates for Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), and Ivanti Secure Access Client (ISAC) to address three critical vulnerabilities: These vulnerabilities require authentication before exploitation. However, if attackers manage to steal login credentials, they could exploit these flaws to gain control over the system. […]

ThaiCERT

February 14, 2025

1.17TB Data Leak Exposes Wi-Fi Passwords and IPs from Mars Hydro’s IoT Grow Light Devices

61/68 Friday, February 14, 2025 A major data breach has been discovered in the database of Mars Hydro, a manufacturer of smart IoT grow lights, exposing over 1.17 terabytes of data and 2.7 billion records without any security protection. The leaked information includes Wi-Fi network names (SSIDs), passwords, IP addresses, device IDs, email addresses, and […]

ThaiCERT

February 14, 2025

OpenSSL Releases Patch for CVE-2024-12797 Vulnerability

60/68 Thursday, February 13, 2025 OpenSSL has released a patch addressing the high-severity vulnerability CVE-2024-12797, which was discovered by Apple. This flaw could allow Man-in-the-Middle (MitM) attacks. OpenSSL is a widely used cryptographic library that secures network communications by encrypting data and verifying identities. It supports Secure Sockets Layer (SSL) and Transport Layer Security (TLS) […]

ThaiCERT

February 13, 2025

Critical vulnerability in KerioControl firewall exploited by hackers.

59/68 Thursday, February 13, 2025 Security experts have issued a warning that more than 12,000 KerioControl firewalls from GFI Software have been compromised through the critical CVE-2024-52875 vulnerability. This flaw allows hackers to execute remote code (RCE). The vulnerability was discovered by researcher Egidio Romano (EgiX) in mid-December 2024 and was first patched in version […]

ThaiCERT

February 13, 2025
1 18 19 20 35