New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now – Go Health Pro

New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now – Go Health Pro

Feb 18, 2025Ravie LakshmananVulnerability / Network Security Two security vulnerabilities have been discovered in the OpenSSH secure networking utility suite that, if successfully exploited, could result in an active machine-in-the-middle (MitM) and a denial-of-service (DoS) attack, respectively, under certain conditions. The vulnerabilities, detailed by the Qualys Threat Research Unit (TRU), are listed below – CVE-2025-26465 … Read more

China’s RedMike hackers taking aim at telcos via flaws in Cisco gear – Go Health Pro

China’s RedMike hackers taking aim at telcos via flaws in Cisco gear – Go Health Pro

A notorious state-sponsored Chinese hacking crew has set it its sights on U.S. telecommunications companies.Known as RedMike, the well-known group has defied law enforcement efforts to cripple its back-end and halt its cyberattacks. This latest round of attacks target known flaws in Cisco devices.Administrators are advised to examine and update all internet-facing network appliances.Researchers with … Read more

Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now – Go Health Pro

Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now – Go Health Pro

Feb 12, 2025Ravie LakshmananNetwork Security / Vulnerability Ivanti has released security updates to address multiple security flaws impacting Connect Secure (ICS), Policy Secure (IPS), and Cloud Services Application (CSA) that could be exploited to achieve arbitrary code execution. The list of vulnerabilities is below – CVE-2024-38657 (CVSS score: 9.1) – External control of a file … Read more

Forescout Reveals 56 Flaws In OT Devices From 10 Companies – Go Health Pro

Forescout Reveals 56 Flaws In OT Devices From 10 Companies – Go Health Pro

The threat intelligence team from Forescout’s Vedere Labs yesterday revealed 56 security flaws affecting OT devices from 10 companies, including Bently Nevada, Emerson, Honeywell, JTEKT, Motorola, Omron, Phoenix Contact, Siemens, and Yokogawa. Collectively called “OT:ICEFALL”, all 56 vulnerabilities are divided into four main categories: insecure engineering protocols, weak cryptography or broken authentication schemes, insecure firmware … Read more

Over 100 Security Flaws Found in LTE and 5G Network Implementations – Go Health Pro

Over 100 Security Flaws Found in LTE and 5G Network Implementations – Go Health Pro

Jan 24, 2025Ravie LakshmananTelecom Security / Vulnerability A group of academics has disclosed details of over 100 security vulnerabilities impacting LTE and 5G implementations that could be exploited by an attacker to disrupt access to service and even gain a foothold into the cellular core network. The 119 vulnerabilities, assigned 97 unique CVE identifiers, span … Read more

x