Talk With an Expert

Internet Storm Center Tech Corner

Another Day, Another NAS: Attacks against Zyxel NAS326 Devices CVE-2023-4473, CVE-2023-4474

https://isc.sans.edu/diary/Another+Day+Another+NAS+Attacks+against+Zyxel+NAS326+devices+CVE20234473+CVE20234474/30884

Linux Trojan - Xorddos with Filename eyshcjdmzg

https://isc.sans.edu/diary/Linux+Trojan+Xorddos+with+Filename+eyshcjdmzg/30880

Scans Probing for LB-Link and Vinga WR-AC1200 routers CVE-2023-24796

https://isc.sans.edu/diary/Scans+Probing+for+LBLink+and+Vinga+WRAC1200+routers+CVE202324796/30890

Buffer Overflow Vulnerabilities in ArubaOS

https://www.arubanetworks.com/support-services/security-bulletins/

The Cuttlefish Malware

https://blog.lumen.com/eight-arms-to-hold-you-the-cuttlefish-malware/

EU iOS Safari Allows User Tracking

https://www.mysk.blog/2024/04/28/safari-tracking/

AWS S3 Denial of Wallet Amplification Attack

https://medium.com/@maciej.pocwierz/how-an-empty-s3-bucket-can-make-your-aws-bill-explode-934a383cb8b1

https://blog.limbus-medtec.com/the-aws-s3-denial-of-wallet-amplification-attack-bc5a97cc041d

BentoML Critical Deserialization Vuln CVE-2024-2912

https://nvd.nist.gov/vuln/detail/CVE-2024-2912

R-Bitrary Code Execution: Vulnerability in R's Deserialization

https://hiddenlayer.com/research/r-bitrary-code-execution/

Coordinated Docker Hub Attacks using Malicious Repositories

https://jfrog.com/blog/attacks-on-docker-with-millions-of-malicious-repositories-spread-malware-and-phishing-scams/

NVMe-oF/TCP Vulnerabilities

https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller

View Older Issues

Catch up on recent editions of NewsBites or browse our full archive of expert-curated cybersecurity news.

Browse Archive