Software Security Cyber Threat News

The latest software security cyber threat stories, summarized by AI

software-security-cyber-threat1.11 min read

Ivanti Avalanche: Critical Security Flaws Threaten Thousands of Organizations

Multiple critical security flaws have been discovered in Ivanti Avalanche, a mobile device management solution used by 30,000 organizations. The vulnerabilities, including stack-based buffer overflows, could allow remote attackers to execute code or crash systems. Ivanti has released a patch to address the issues, along with six other flaws that could lead to authentication bypass and remote code execution. Users are urged to update their software promptly to mitigate potential threats.

2 years ago•Source: The Hacker News

CISA Issues Urgent Warnings on Multiple Security Flaws and Ransomware Attacks.

software-security-cyber-threat

2.095 min•2 years ago

CISA Issues Urgent Warnings on Multiple Security Flaws and Ransomware Attacks.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five security flaws to its Known Exploited Vulnerabilities catalog, including three high-severity flaws in Veritas Backup Exec Agent software that could lead to the execution of privileged commands on the underlying system. Mandiant has revealed that an affiliate associated with the BlackCat ransomware operation is targeting publicly exposed Veritas Backup Exec installations to gain initial access by leveraging the aforementioned three bugs. Federal Civilian Executive Branch Agencies have until April 28, 2023, to apply the patches to secure their networks against potential threats.

via The Hacker News

Featured Software Security Cyber Threat Stories

Ivanti Avalanche: Critical Security Flaws Threaten Thousands of Organizations

CISA Issues Urgent Warnings on Multiple Security Flaws and Ransomware Attacks.

More Software Security Cyber Threat Stories