Fixitgearware Security’s Post

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039): November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities (CVE-2024-43451, CVE-2024-49039) CVE-2024-43451 is yet another vulnerability that allows attackers to elevate their privileges on targeted Windows and Windows Server machines by disclosing the user’s NTLMv2 hash, which contains their authentication credentials. The hash can then be used by … More → The post Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) appeared first on Help Net Security.

Make sure you've updated your Google Pixel phone! And make sure you check our your Microsoft Window and Progress Telerik servers for these Known Exploited Vulnerabilities #sprysquared #cybersecurity #vulnerabilitymanagement #googlepixel #microsoftwindows #progresstelerikservers #firmware #maliciousfirmware

Patch Windows now – Windows Common Log File System Driver Elevation of Privilege Vulnerability Microsoft has confirmed a #zeroday #security #vulnerability that can open up Windows devices to full system #compromise is under active #exploitation. The #cyberattack has also been confirmed by the Cybersecurity and Infrastructure Security Agency, part of the U.S. Department of Homeland Security, which has added the security issue to the Known Exploited Vulnerability Catalog, and advised it “poses significant risks” with a recommendation for all users to take appropriate remediation measures and update now. Here’s what you need to know about CVE-2024-49138. https://lnkd.in/e7-2STqY

I found some hidden directories and files from a web server with nmap tools. Nmap is a best tools for searching vulnerable point. http-enum command can be used to enumerate the directories and files on a web server, and the http-methods command can be used to identify the allowed HTTP methods on a web server. command is : nmap -sV -p 80 --script http-enum 192.168.11.*** #penetrationtester #cybersecurity #socanalyst #ethicalhacker #namp

#CyberWhisper #CyberSecurity #Pharming : Pharming - A cyberattack intended to redirect a website’s traffic to another, bogus site. Pharming can be conducted either by changing the hosts file on a victim’s computer or by exploitation of a vulnerability in DNS server software.

Confusion Attacks are a new type of attack surface that exploits the internal mechanisms and architectural design of Apache HTTP Server. Three principal vulnerabilities in Apache HTTP Server, focusing on filename confusion, DocumentRoot confusion, and handler confusion: 1. Filename Confusion: This attack occurs when some modules treat the r->filename field as a URL, while others treat it as a filesystem path. This inconsistency can lead to security issues, such as path truncation and access control bypasses. 2. DocumentRoot Confusion: This attack occurs when the DocumentRoot directive is not properly validated, allowing attackers to access sensitive files and directories. 3. Handler Confusion: This attack occurs when the Handler directive is not properly validated, allowing attackers to execute arbitrary code. #ConfusionAttacks #CyberSecurity #Apache #Server

"LetMeowIn" - the New Windows Credential Harvester - Short Analysis https://lnkd.in/gvTZqk8R We would like to thank Binary Defense and William Wallace for sharing this information. #security #cybersecurity #cybersecuritynews #letmeowin #lsassdumper #malware #infosecnews

"Thrilled to announce that I’ve completed the 'Password Reset Poisoning via Middleware' lab on PortSwigger! 🔓 This hands-on experience taught me how to exploit vulnerabilities in password reset mechanisms, adding another layer to my growing expertise in ethical hacking. Every new challenge brings me closer to mastering cybersecurity, one exploit at a time. 🚀 #EthicalHacking #CyberSecurity #PasswordResetPoisoning #PortSwigger #ContinuousLearning"

🚨 [Cyber] A Detailed Guide on Feroxbuster 👉 Feroxbuster is a robust tool designed to identify directories and files on web servers using brute-force techniques. It is frequently utilized in penetration testing and The post A Detailed Guide on Feroxbuster... #NoHackMe_news #NoHackMe_news_en https://lnkd.in/d9w3_UjM

Arcserve has fixed critical security vulnerabilities (CVE-2024-0799, CVE-2024-0800) in its Unified Data Protection (UDP) solution that can be chained to upload malicious files to the underlying Windows system. https://lnkd.in/gATxFChu Tenable #ArcserveUDP #PoC #exploit #patch #backup #disasterrecovery #cybersecuritynews #infosecnews