Customers, patch your VPN now for security!

TLDR:

Check Point is warning customers to patch their VPN software immediately due to a zero-day vulnerability under active exploitation. The vulnerability affects CloudGuard Network, Quantum Maestro, and other systems. Customers are urged to update to prevent attackers from accessing sensitive information and gaining domain administrator privileges. Additionally, other critical vulnerabilities in Linux kernels and various products have been identified and need to be addressed. On a lighter note, a scam involving offering a “free piano” as bait has been uncovered, targeting university students and faculty primarily in North America. Cooler Master also suffered a data breach, with personal information of customers being improperly accessed.

Article:

Security software vendor Check Point has detected a zero-day vulnerability under active exploitation in its VPN software and is urging customers to update their systems immediately. The vulnerability affects various Check Point systems including CloudGuard Network, Quantum Maestro, and Quantum Security Gateways. The company has assigned a CVE (CVE-2024-24919) to the vulnerability with a CVSS score of 8.6.

Check Point did not provide detailed information about the vulnerability but mentioned that attackers are exploiting old VPN local accounts using an unrecommended password-only authentication method. Patches are available for all affected systems. Threat intelligence firm Mnemonic confirmed that the vulnerability allows threat actors to retrieve sensitive information from security gateways by exploiting local accounts.

Aside from the VPN vulnerability, Check Point also highlights other critical vulnerabilities in Linux kernels and various products such as Westermo’s EDW-100 serial to Ethernet converters, Baxter Welch Allyn’s product configuration tool, LenelS2’s Netbox event monitoring software, and others. Customers are advised to check their kernel versions and update as needed to mitigate potential risks.

In a more lighthearted scam revelation, security outfit Proofpoint has uncovered an advanced fee fraud (AFF) scam involving a “free piano” offer to victims, primarily targeting university students and faculty in North America. The scam involves offering a free piano due to various reasons, with the catch being that recipients have to pay for shipping. While it may sound too good to be true, the scam has generated over $900,000 in a Bitcoin wallet linked to the scheme.

Additionally, Cooler Master, a computer components manufacturer, experienced a data breach where 103 GB of data was allegedly stolen from the company’s Fanzone support site. The stolen data includes names, phone numbers, addresses, and credit card information of loyalty members. The hacker behind the breach claimed to have accessed data of over 500,000 customers and plans to sell it on a hacking forum, posing a risk to affected customers’ identity security.

Post Views: 109

Latest from Blog

SDCOE praised for leadership, support, and innovation in cybersecurity

TLDR: San Diego County Grand Jury commends SDCOE for leadership in cybersecurity in K-12 education SDCOE provides resources, guidance, and cybersecurity solutions to county school districts A recent report by the San

EU’s tough cyber rules threaten massive fines and business suspensions

TLDR: The EU’s NIS 2 becomes enforceable on Oct. 17, imposing tougher cyber regulations on companies. Companies could face hefty fines or service suspensions for violations under the new law. Companies in

Financial sector prime target for DDoS attacks, Akamai study finds

TLDR: – Financial services sector remains the top target for DDoS attacks for the second consecutive year – APJ region faces significant cybersecurity challenges with a high threat score for phishing A

Watch out for serverless architecture’s cybersecurity risks for businesses

Serverless Architecture and Cybersecurity Risks TLDR: Move towards serverless architecture presents new security challenges Threat actors are exploring vulnerabilities in serverless environments Today’s cybersecurity landscape is rapidly evolving with the adoption of

Ivanti alerts on exploited CSA vulnerability in recent cyber attacks

Article Summary TLDR: Ivanti warns of critical Cloud Services Appliance (CSA) flaw being exploited in attacks Threat actors are exploiting CVE-2024-8963 admin bypass vulnerability to access restricted functionality Ivanti Warns of Another

Beware Vanilla Tempest hackers target healthcare sectors, Microsoft alerts

TLDR: Vanilla Tempest, a ransomware group, is targeting healthcare organizations in the US using a new ransomware strain called “INC.” The attackers use tools like Supper backdoor, AnyDesk, and MEGA to further

Internet baffled by mysterious ‘Noise Storms’ stumping experts

TLDR: Internet intelligence firm GreyNoise has been tracking large waves of “Noise Storms” containing spoofed internet traffic since January 2020 The purpose and origin of these noise storms, suspected to be covert

Top 20 Linux Admin Tools for 2024

TLDR: Top Linux Admin Tools in 2024 Key points: Linux admin tools streamline system configurations, performance monitoring, and security management. Popular Linux admin tools include Webmin, Puppet, Zabbix, Nagios, and Ansible. Summary

Evergy chooses OneLayer Bridge for private LTE network management and security

TLDR: Evergy has selected OneLayer Bridge for private LTE network management and security in a multi-year deal. The platform will help manage and secure thousands of devices on Evergy’s private LTE network,

Bogus job tempts aerospace, energy workers

TLDR: A North Korean cyberespionage group is posing as job recruiters to target employees in aerospace and energy sectors. Mandiant reports that the group uses fake job descriptions stored in malicious archives

Suggestions

Customers, patch your VPN now for security

TLDR:

Article:

Latest from Blog