First, the information disclosure vulnerability in Microsoft SharePoint Server is highlighted, which may allow an attacker to access confidential information. This vulnerability was reported by the Microsoft security team. Another vulnerability mentioned is the PHP remote code execution vulnerability used by the TellYouThePass ransomware. This vulnerability was discovered by security researchers and is used to infect systems and encrypt files.
An attack on Fortinet systems by Chinese hackers is reported, reported by the Fortinet security research team. Additionally, Black Basta ransomware attacks that exploit a zero-day vulnerability in Windows are mentioned. It also highlights a critical vulnerability discovered in the Apple ecosystem, which may allow an attacker to execute malicious code.
It reports on security updates for Chrome and Firefox to fix vulnerabilities as well as the Microsoft Patch Tuesday June 2024, which fixes 51 flaws, including 18 remote code executions (RCEs). This information comes from Microsoft's security bulletin.
It also highlights a critical vulnerability in Microsoft Outlook that allows remote code execution and talks about the hijacking of Snowflake databases by the UNC5537 group. Finally, it reports on vulnerabilities in Netgear routers that allow unauthorized access.
For more details of the weekly newsletter: Clic here
Comments