Kerberos Authentication Spoofing: Don’t Bypass the Spec
Yaron Kassner, CTO at Silverfort, discusses authentication-bypass bugs in Cisco ASA, F5 Big-IP, IBM QRadar and Palo Alto Networks PAN-OS.
Source: Threat
[...]
bypass
Auth Bypass Bug Exploited, Affecting Millions of Routers
A mere three days after disclosure, cyberattackers are hijacking home routers from 20 vendors & ISPs to add them to a Mirai-variant botnet
[...]
15-Year-Old Linux Netfilter Vulnerability Let Hackers Bypass All Modern Security Mitigations
An Information Security Engineer, Andy Nguyen has recently detected a 15-Year-Old Linux Netfilter vulnerability that allows any attackers to bypass all the modern
[...]
Windows Hello Bypass Fools Biometrics Safeguards in PCs
A Windows security bug would allow an attacker to fool a USB camera used in the biometric facial-recognition aspect of the system.
[...]
Kaseya Hacked via Authentication Bypass
The Kaseya ransomware attack is believed to have been down to an authentication bypass. Yes, ransomware needs to be on your radar —
[...]
DoubleVPN Taken Down by Federal Authorities That Was Used by Hackers For Evasion & Bypass
Law enforcement of Europe has seized the servers and log files of DoubleVPN that has been continuously used by Cybercriminals for the double-encryption
[...]
Netgear Authentication Bypass Allows Router Takeover
Microsoft researchers discovered the firmware flaws in the DGN-2200v1 series router that can enable authentication bypass to take over devices and access stored
[...]
Antivirus Softwares Bug Let Hackers Bypass AV & Deactivate Their Protections
Nowadays the malware attacks are increasing rapidly, and every user, as well as companies, are trying their best to bypass such unwanted situations.
[...]
MacOS Zero-Day Let Attackers Bypass Privacy Preferences
Apple has released security patches for vulnerabilities in macOS and tvOS that reports indicate have been exploited in the wild.
Source: Dark
[...]
Firewall Vendor Patches Critical Auth Bypass Flaw
Cybersecurity firm Genua fixes a critical flaw in its GenuGate High Resistance Firewall, allowing attackers to log in as root users.
Source:
[...]