Monthly Security Bulletin – May
Научете повече за последните новини за киберсигурността в майско издание на нашия месечен бюлетин за сигурността, изготвен от нашите анализатори по сигурността.
- GitLab has addressed a critical severity vulnerability that could allow remote attackers to take over user accounts using hardcoded passwords
- Palo Alto Networks warned customers that some of its firewall, VPN, and XDR products are vulnerable to a high severity OpenSSL infinite loop bug disclosed three weeks ago. Threat actors can exploit this security vulnerability (tracked as CVE-2022-0778) to trigger a denial of service state and remotely crash devices running unpatched software
- Microsoft has discovered a new malware used by the Chinese-backed Hafnium hacking group to maintain persistence on compromised Windows systems by creating and hiding scheduled tasks