Rapid Surge in Cybersecurity Threats: A Global Response | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware

Widespread Cybersecurity Threats Uncovered: Companies Scramble to Patch Vulnerabilities

A wave of cybersecurity vulnerabilities and exploits have swept across various platforms and services, putting the digital world on alert. Juniper Networks recently issued a warning about a critical remote code execution (RCE) bug affecting its firewalls and switches, while the Cybersecurity and Infrastructure Security Agency (CISA) reported that a critical bug in Microsoft SharePoint is now under active exploit. The recent exploitation of Ivanti Connect Secure zero-day vulnerabilities to deploy custom malware, and a critical zero-click account hijacking vulnerability in GitLab further amplify the seriousness of the situation.

Juniper Networks’ Critical Vulnerabilities

Juniper Networks has disclosed over two dozen security advisories to inform customers about over 100 vulnerabilities affecting its products. The most severe of these vulnerabilities, CVE 2024 21591, impacts Junos OS on SRX series firewalls and EX series switches. An unauthenticated network-based attacker can exploit this vulnerability to cause a denial of service (DoS) condition or execute arbitrary code and obtain root privileges on the targeted device. Critical vulnerabilities have also been patched in third-party components present in Juniper Security Director Insights Session Smart Router and CTPView products.

Other Cybersecurity Threats on the Horizon

Other cybersecurity threats include the abuse of GitHub’s services by threat actors, the manipulation of platforms to further supply chain attacks, a data breach at a modular laptop manufacturer, a data theft at a health system, an actuarial firm affected by a hack, and the arrest of a person behind a sophisticated cryptojacking scheme. CISA has added Ivanti and Microsoft SharePoint bugs to its Known Exploited Vulnerabilities catalog, and Cisco has fixed a critical Unity Connection vulnerability, CVE 2024 20272.

Adblock Performance Issues

In addition to security vulnerabilities, a significant performance issue has been reported by users of the Adblock and Adblock Plus extensions on YouTube. While initially suspected to be intentional throttling by Google, the issue was later attributed to a recent update in the extensions. Users are advised to disable the extensions and refresh web pages to resolve the issue. The developers of Adblock are investigating the cause of performance degradation and have solicited user feedback to assist in the resolution.


Click Here For The Original Source.

National Cyber Security