Tag

Telerik Bug

All articles tagged with #telerik bug

cybersecurity2 years ago•2 min saved

US Federal Agencies Hacked by Multiple Threat Actors Exploiting Old Flaws.

Criminals, including potentially an APT group, exploited a three-year-old Telerik bug to break into a US federal government agency's Microsoft Internet Information Services web server between November 2022 and early January. The Feds became aware of the intrusion after spotting warning signs at a federal civilian executive branch agency. The Telerik bug, which received a 9.8 out of 10 CVSS severity score, was first discovered in 2019 and is especially popular with Beijing-backed criminals. The cybersecurity agency suggests organizations stay on top of patching to ensure their software is up to date and limit permissions to the minimum necessary to run services.

via The Register|

#apt #cyber-attack #cybersecurity

cybersecurity2 years ago•2 min saved

CISA Implements Ransomware Warning Program for Critical Infrastructure

A US federal agency's Microsoft IIS web server was hacked by exploiting a critical .NET deserialization vulnerability in the Progress Telerik UI for ASP.NET AJAX component. At least two threat actors accessed the unpatched server by exploiting this bug to gain remote code execution. The attackers had access to the server between November 2022 and early January 2023. The malware installed on the compromised IIS server could deploy additional payloads, evading detection by deleting its traces on the system, and opening reverse shells to maintain persistence. The CVE-2019-18935 Telerik UI vulnerability was also included in the NSA's top 25 security bugs abused by Chinese hackers and the FBI's list of top targeted vulnerabilities.

via BleepingComputer|

#cybersecurity #malware #remote-code-execution