Weekly Digest Week 41 – 2024
Featured Story CISA Warns of Jenkins RCE Bug Exploited in Ransomware Attacks CISA has added CVE-2024-23897 to its Known Exploited Vulnerabilities catalog. This flaw allows unauthenticated attackers to read arbitrary files from Jenkins controller file systems via the CLI parser. Multiple threat actors, including the RansomEXX gang, have exploited it in real-world attacks on service […]
Weekly Digest Week 40 – 2024
Featured Story Unix Printing Vulnerabilities Enable Easy DDoS Attacks New vulnerabilities in the Common Unix Printing System (CUPS) allow attackers to launch DDoS attacks at a cost of less than 1 cent. Over 58,000 exposed systems can generate between 1GB and 6GB of traffic toward a target by sending a single malicious packet. Initially disclosed […]
