- rwth-security - lists.rwth-aachen.de

Hackers leak configs and VPN credentials for 15,000 FortiGate devices
by Bernd Kohler 16 Jan '25

16 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Hackers leak configs and VPN credentials for 15,000 FortiGate devices" VG Bernd [0] https://www.bleepingcomputer.com/news/security/hackers-leak-configs-and-vpn… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social-Media-Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.instagram.com/itcenterrwthaachen/ https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/c/ITCenterRWTHAachen

1 0

CVE-2024-12084 (CVSS 9.8) – Code Execution Risk: Rsync Vulnerability Demands Immediate Patching
by Bernd Kohler 15 Jan '25

15 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "CVE-2024-12084 (CVSS 9.8) – Code Execution Risk: Rsync Vulnerability Demands Immediate Patching" VG Bernd [0] https://securityonline.info/cve-2024-12084-cvss-9-8-code-execution-risk-rsy… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

4 4

CVE-2025-0147: Zoom Fixes High-Severity Security Flaw
by Bernd Kohler 15 Jan '25

15 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "CVE-2025-0147: Zoom Fixes High-Severity Security Flaw" VG Bernd [0] https://securityonline.info/cve-2025-0147-zoom-fixes-high-severity-security… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Sicherheitslücken (incl. unauthenticated RCE) in rsync
by Markus Witt 14 Jan '25

14 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI: > Two independent groups of researchers have identified a total of 6 > vulnerabilities in rsync. In the most severe CVE, an attacker only requires > anonymous read access to a rsync server, such as a public mirror, to > execute arbitrary code on the machine the server is running on. VG Markus [0] <https://www.openwall.com/lists/oss-security/2025/01/14/3>

1 0

Microsoft: macOS bug lets hackers install malicious kernel drivers
by Bernd Kohler 14 Jan '25

14 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Microsoft: macOS bug lets hackers install malicious kernel drivers" --> siehe dazu auch [1] VG Bernd [0] https://www.bleepingcomputer.com/news/security/microsoft-macos-bug-lets-hac… [1] https://securityonline.info/microsoft-unveils-cve-2024-44243-a-macos-system… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Banshee Stealer Hits macOS Users via Fake GitHub Repositories
by Bernd Kohler 10 Jan '25

10 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Banshee Stealer Hits macOS Users via Fake GitHub Repositories" VG Bernd [0] https://hackread.com/banshee-stealer-hits-macos-fake-github-repositories/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook
by Bernd Kohler 10 Jan '25

10 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook" --> welche Daten genau an Dritte (u.a. zwecks Analyse) übermittelt werden steht dort aber nicht :) VG Bernd [0] https://www.bleepingcomputer.com/news/security/criminal-ip-bringing-real-ti… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Let's Encrypt - Announcing Certificate Profile Selection
by Bernd Kohler 09 Jan '25

09 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Let's Encrypt - Announcing Certificate Profile Selection" VG Bernd [0] https://letsencrypt.org/2025/01/09/acme-profiles/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Authentication Bypass Vulnerability Found in Dell OpenManage Server Administrator
by Bernd Kohler 08 Jan '25

08 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Authentication Bypass Vulnerability Found in Dell OpenManage Server Administrator" VG Bernd [0] https://securityonline.info/authentication-bypass-vulnerability-found-in-de… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

CVE-2024-8474: OpenVPN Connect Vulnerability Leaks Private Keys
by Bernd Kohler 07 Jan '25

07 Jan '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "CVE-2024-8474: OpenVPN Connect Vulnerability Leaks Private Keys" --> Versionen vor 3.5.0 --> Todo's: - Update - neue Credentials generieren und passend konfigurieren - Logs prüfen VG Bernd [0] https://securityonline.info/cve-2024-8474-openvpn-connect-vulnerability-lea… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0