Home - First Hackers News

Microsoft Reevaluates SPNEGO NEGOEX Vulnerability CVE-2022-37958 as Critical
Gallery
Microsoft Reevaluates SPNEGO NEGOEX Vulnerability CVE-2022-37958 as Critical

BOTNET, Compromised, Data Breach, Internet Security, Microsoft, Mobile Security, Security Advisory, Security Update, Tips

Microsoft Reevaluates SPNEGO NEGOEX Vulnerability CVE-2022-37958 as Critical

A critical remote code execution vulnerability has been discovered in the SPNEGO (Simple and Protected GSS-API Negotiation Mechanism). CVE-2022-37958 The Vulnerability CVE-2022-37958, has been rated as having a CVSS score [...]

By FHN| December 16th, 2022|BOTNET, Compromised, Data Breach, Internet Security, Microsoft, Mobile Security, Security Advisory, Security Update, Tips|0 Comments

Microsoft CVE-2022-44693: Microsoft SharePoint Server Remote Code Execution Vulnerability
Gallery
Microsoft CVE-2022-44693: Microsoft SharePoint Server Remote Code Execution Vulnerability

Compromised, Exploitation, Internet Security, IOC's, malicious cyber actors, Microsoft, Security Advisory, Security Update

Microsoft CVE-2022-44693: Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft on Tuesday released patches for 48 vulnerabilities in seven Microsoft product families. This includes 6 Critical-class issues affecting Microsoft Dynamics, SharePoint, and Windows. Of the 53 patches released in [...]

By FHN| December 15th, 2022|Compromised, Exploitation, Internet Security, IOC's, malicious cyber actors, Microsoft, Security Advisory, Security Update|0 Comments

Fortinet Released Patch for FortiOS SSL-VPN RCE Vulnerability CVE-2022-42475
Gallery
Fortinet Released Patch for FortiOS SSL-VPN RCE Vulnerability CVE-2022-42475

BOTNET, Compromised, Exploitation, Internet Security, IOC's, malicious cyber actors, Tips

Fortinet Released Patch for FortiOS SSL-VPN RCE Vulnerability CVE-2022-42475

Fortinet has released a patch for a critical zero-day security vulnerability affecting its FortiOS SSL-VPN product. The vulnerability could lead to remote code execution and is actively exploited. CVE-2022-42475 CVE-2022-42475 is a heap-based buffer overflow vulnerability in [...]

By FHN| December 14th, 2022|BOTNET, Compromised, Exploitation, Internet Security, IOC's, malicious cyber actors, Tips|0 Comments

Amazon ECR Public Gallery flaw could have wiped or poisoned any image
Gallery
Amazon ECR Public Gallery flaw could have wiped or poisoned any image

BOTNET, Compromised, Exploitation, Internet Security, IOC's, malicious cyber actors, Malicious extension, Security Advisory, Security Update

Amazon ECR Public Gallery flaw could have wiped or poisoned any image

Security flaw has been disclosed in Amazon Elastic Container Registry (ECR) Public Gallery that could have been potentially exploited according to cloud security firm Lightspin. Amazon ECR Public Gallery The Amazon [...]

By FHN| December 13th, 2022|BOTNET, Compromised, Exploitation, Internet Security, IOC's, malicious cyber actors, Malicious extension, Security Advisory, Security Update|0 Comments

MegaRAC flaws, IP leak impact multiple server brands
Gallery
MegaRAC flaws, IP leak impact multiple server brands

BOTNET, Compromised, Exploitation, hackers, Internet Security, IOC's, malicious cyber actors, Malicious extension, Malware, Mobile Security, Security Advisory, Security Update, Software Issues, Targeted Attacks, Tips

MegaRAC flaws, IP leak impact multiple server brands

Research team has found three different vulnerabilities in the MegaRAC Baseboard Management Controller (BMC) software. CVE-2022-40259 and CVE-2022-40242 vulnerabilities have CVSS scores of 9.8, while the CVE-2022-2827 vulnerability has a CVSS score of 7.5 on the National Vulnerability [...]