2024 - Information Management Today

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

Security Affairs

OCTOBER 22, 2024

VMware failed to fully address a remote code execution flaw, tracked as CVE-2024-38812 (CVSS score: 9.8), in its vCenter Server platform. In September, Broadcom released security updates to the vulnerability CVE-2024-38812. During the 2024 Matrix Cup hacking contest in China, zbl & srs of team TZL demonstrated the vulnerability.

Government

Government Cloud Access IT

QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024

Security Affairs

OCTOBER 30, 2024

QNAP fixed critical zero-day CVE-2024-50388 which was demonstrated against a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. On Day three of the Pwn2Own Ireland 2024 competition, Ha The Long with Ha Anh Hoang of Viettel Cyber Security (@vcslab) used a single command injection bug to exploit the QNAP TS-464 NAS.

Manufacturing

Manufacturing Security IT

CVE-2024-44243 macOS flaw allows persistent malware installation

Security Affairs

JANUARY 15, 2025

Microsoft disclosed details of a now-patched macOS flaw, tracked as CVE-2024-44243 (CVSS score: 5.5), that allows attackers with “root” access to bypass System Integrity Protection ( SIP ). SIP in macOS safeguards the system by blocking the execution of unauthorized code.

Libraries

Libraries Access Privacy IT

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” reads the report published by Microsoft Threat Intelligence. “Microsoft assesses with medium confidence that Storm-2372 aligns with Russian interests, victimology, and tradecraft.”

Phishing

Phishing Authentication Access Government

A Tale of Two Case Studies: Using LLMs in Production

Speaker: Tony Karrer, Ryan Barker, Grant Wiles, Zach Asman, & Mark Pace

📆 February 8th, 2024 at 11:00am PST, 2:00pm EST, 7:00pm GMT Don't miss out on this opportunity to stay ahead of the AI curve! Save your seat today and be part of the tech conversation that's shaping the future.

Artificial Intelligence

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

Security Affairs

NOVEMBER 4, 2024

The July 2024 ransomware attack that hit the City of Columbus, Ohio, exposed the personal and financial data of 500,000 individuals. On July 18, 2024, the City of Columbus, Ohio, suffered a cyber attack that impacted the City’s services.

Ransomware

Ransomware Data breaches Cybersecurity Access

AI & Automation Trends: 2024 Insights & 2025 Outlook

AIIM

DECEMBER 31, 2024

As we reflect on the transformative developments in AI and automation throughout 2024, several key trends have emerged that are shaping the future of information management.

Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024

Security Affairs

SEPTEMBER 16, 2024

Microsoft warns that a recently patched Windows flaw, tracked as CVE-2024-43461, was actively exploited as a zero-day before July 2024. Microsoft warns that attackers actively exploited the Windows vulnerability CVE-2024-43461 as a zero-day before July 2024. MSHTML is a platform used by Internet Explorer. “Yes.

Archiving

Archiving File names Libraries Passwords

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Continuing our look back at 2024, part two of Last Watchdogs year-ender roundtable turns its focus to emerging threats vs. evolving defense tactics. This has fueled rapid adoption of autonomous AI agents, which matured significantly in 2024 and will become mainstream in 2025. The drivers are intensifying. million (NIST, WEF).

Security

Security Phishing IoT Risk

Generative AI Deep Dive: Advancing from Proof of Concept to Production

Speaker: Maher Hanafi, VP of Engineering at Betterworks & Tony Karrer, CTO at Aggregage

📆 June 4th 2024 at 11:00am PDT, 2:00pm EDT, 7:00pm BST Save your seat and register today!

Artificial Intelligence

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 19, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the Veeam Backup and Replication flaw CVE-2024-40711 (CVSS score of 9.8) This week, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware.

IT

IT Ransomware Authentication Cybersecurity

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

NOVEMBER 7, 2024

Google as usual did not share details about the attacks exploiting the above vulnerability, however, it added that another issue, tracked as CVE-2024-43047, is actively exploited in the wild. CVE-2024-43093 CVE-2024-43047″ reads the security bulletin published by Google. Versions up to 2.3.6 and unpatched 2.3.7

IT

IT Authentication Cybersecurity Risk

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

Below are the vulnerabilities reported by ZDI: CVE-2024-8355 : SQL injection in DeviceManager, enabling database manipulation or code execution via spoofed Apple device connections. CVE-2024-8358 : Command injection in UPDATES_ExtractFile , enabling command execution via file paths during updates.

Ransomware

Ransomware Manufacturing Access Risk

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

As of September 5, 2024, the Internet Archive held more than 42.1 HIBP permalink: [link] pic.twitter.com/Oc2Qvrh6Ov — HackManac (@H4ckManac) October 10, 2024 The threat actors that breached the popular website have shared a copy of the stolen data with the data breach notification service Have I Been Pwned data.

Archiving

Archiving Data breaches Passwords File names

Improving the Accuracy of Generative AI Systems: A Structured Approach

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

📆 November 14, 2024 at 11:00 AM PST, 2:00 PM EST, 7:00 PM GMT

Adobe is aware that ColdFusion bug CVE-2024-53961 has a known PoC exploit code

Security Affairs

DECEMBER 24, 2024

Adobe released out-of-bandsecurity updates to address a critical vulnerability, tracked as CVE-2024-53961 (CVSS score 7.4), in ColdFusion. Cybersecurity and Infrastructure Security Agency (CISA) added another Adobe ColdFusion issue, tracked as CVE-2024-20767 , to its Known Exploited Vulnerabilities (KEV) catalog. In December, the U.S.

Cybersecurity

Cybersecurity Access Security IT

Microsoft Patch Tuesday security updates for August 2024 addressed six actively exploited bugs

Security Affairs

AUGUST 14, 2024

Microsoft’s August 2024 Patch Tuesday addressed 90 vulnerabilities, including six that are actively exploited. No Yes RCE CVE-2024-38178 Scripting Engine Memory Corruption Vulnerability Important 7.5 No Yes RCE CVE-2024-38193 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Important 7.8

Security

Security IT Information Security

Over 20,000 internet-exposed VMware ESXi instances vulnerable to CVE-2024-37085

Security Affairs

AUGUST 1, 2024

Shadowserver researchers reported that over 20,000 internet-exposed VMware ESXi instances are affected by the actively exploited flaw CVE-2024-37085. Researchers at the Shadowserver Foundation reported that approximately 20,000 VMware ESXi servers exposed online appear impacted by the exploited vulnerability CVE-2024-37085.

Ransomware

Ransomware Authentication Cloud Security

Broadcom fixed Critical VMware vCenter Server flaw CVE-2024-38812

Security Affairs

SEPTEMBER 18, 2024

Broadcom released security updates to address a critical vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), in VMware vCenter Server that could lead to remote code execution. The company also addressed a privilege escalation vulnerability, tracked as CVE-2024-38813, in vCenter Server. ” reads the advisory.

Cloud

Cloud Access IT Security

Launching LLM-Based Products: From Concept to Cash in 90 Days

Speaker: Christophe Louvion, Chief Product & Technology Officer of NRC Health and Tony Karrer, CTO at Aggregage

September 24th, 2024 at 11:00 AM PDT, 2:00 PM EDT, 7:00 PM BST This talk will offer a comprehensive roadmap for turning AI potential into tangible results, opening up the opportunity to create value in your organization. Save your seat today!

Sales

VMware fixed five vulnerabilities in Aria Operations product

Security Affairs

NOVEMBER 27, 2024

The virtualization giant addressed the following vulnerabilities: Here are the details from VMware’s VMSA-2024-0022 bulletin : Local privilege escalation vulnerability (CVE-2024-38830) (CVSS 7.8) – A local admin on VMware Aria Operations can exploit a vulnerability to escalate privileges to root. Important 8.18.2

Cloud

Cloud Access IT Security

Ransomware gangs exploit recently patched VMware ESXi bug CVE-2024-37085

Security Affairs

JULY 29, 2024

Microsoft warns that ransomware gangs are exploiting the recently patched CVE-2024-37085 flaw in VMware ESXi flaw. Microsoft researchers warned that multiple ransomware gangs are exploiting the recently patched vulnerability CVE-2024-37085 (CVSS score of 6.8) in VMware ESXi flaw. ” warned Microsoft. .

Ransomware

Ransomware Cloud Encryption Authentication

Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401

Security Affairs

SEPTEMBER 8, 2024

Multiple threat actors actively exploited the recently disclosed OSGeo GeoServer GeoTools flaw CVE-2024-36401 in malware-based campaigns. The researchers observed threat actors exploiting CVE-2024-36401 in attacks aimed at IT service providers in India, technology companies in the U.S., ” concludes the report.

Libraries

Libraries Encryption Cybersecurity Access

Change Healthcare data breach impacted over 100 million people

Security Affairs

OCTOBER 25, 2024

The Change Healthcare data breach in the February 2024 impacted over 100 million, the largest-ever healthcare data breach in the US. UnitedHealth Group announced that the data breach suffered by Change Healthcare in February 2024 impacted more than 100 million individuals.

Data breaches

Data breaches Ransomware Insurance Cybersecurity

Your Expert Guide to CX Orchestration & Enhancing Customer Journeys

Speaker: Keith Kmett, Principal CX Advisor at Medallia

📆 February 22nd, 2024 at 11:00am PST, 2:00pm EST, 7:00pm GMT This will include a real-world example and actionable steps that you can take to apply orchestration in your own organization. 📈 Don't miss out on this exclusive event! Register today to save your seat!

Customer Experience

OnePoint Patient Care data breach impacted 795916 individuals

Security Affairs

OCTOBER 25, 2024

The organization observed suspicious activity on its network on August 8, 2024 and promptly initiated an internal investigation. “On August 8, 2024, OPPC detected suspicious activity on its computer network. OPPC reported to the US Department of Health and Human Services that the security incident impacted 795916 individuals.

Data breaches

Data breaches Ransomware Security IT

The best Linux distribution of 2024 is MacOS-like but accessible to all

Collaboration 2.0

DECEMBER 24, 2024

Here's my top pick for my favorite open-source distro in 2024. I've used and covered Linux for nearly 30 years.

Access

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

Security Affairs

JULY 11, 2024

Multiple threat actors exploit a recently disclosed security PHP flaw CVE-2024-4577 to deliver multiple malware families. The flaw CVE-2024-4577 (CVSS score: 9.8) Greynoise researchers also reported malicious attempts of exploitation of the CVE-2024-4577. “As ” reported Akamai. . ” reported Akamai.

Honeypots

Honeypots File names Mining IoT

SolarWinds fixed critical RCE CVE-2024-28991 in Access Rights Manager

Security Affairs

SEPTEMBER 16, 2024

SolarWinds addressed a critical remote code execution vulnerability, tracked as CVE-2024-28991, in Access Rights Manager. The company also addressed a hardcoded credential vulnerability, tracked as CVE-2024-28990, in ARM. and prior versions. ” reads the advisory. Piotr Bazydlo also reported this vulnerability.

Access

Access Authentication Security Information Security

Reimagining CX: How to Implement Effective AI-Driven Transformations

Speaker: Steve Pappas, Chief Strategist, Startup and Early Stage Growth Advisor, Keynote Speaker, CX Podcaster

🗓 Thursday, January 11th, 2024 at 9:30am PST, 12:30pm EST, 5:30pm GMT Don't miss this exclusive event! Register today and receive FREE GIFTS from Steve after the webinar!

Customer Experience

Critical Zimbra Postjournal flaw CVE-2024-45519 actively exploited in the wild. Patch it now!

Security Affairs

OCTOBER 2, 2024

Threat actors attempt to exploit recently disclosed vulnerability CVE-2024-45519 in Synacor’s Zimbra Collaboration. Proofpoint cybersecurity researchers reported that threat actors are attempting to exploit a recently disclosed vulnerability, tracked as CVE-2024-45519, in Synacor’s Zimbra Collaboration. Versions 8.8.15

IT

IT Cybersecurity Risk Security

Microsoft Patch Tuesday security updates for September 2024 addressed four actively exploited zero-days

Security Affairs

SEPTEMBER 11, 2024

Microsoft Patch Tuesday security updates for September 2024 addressed 79 flaws, including four actively exploited zero-day flaws. ” The four actively exploited zero-day vulnerabilities are: CVE-2024-38014 – Windows Installer Elevation of Privilege Vulnerability. However, we at the ZDI think that number should be five.”

Security

Security IoT Authentication IT

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 22, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the ScienceLogic SL1 flaw CVE-2024-9537 (CVSS v4 score: 9.3) ” On September 24, 2024, cloud hosting provider Rackspace reported an issue with its ScienceLogic EM7 monitoring tool. CISA orders federal agencies to fix this vulnerability by November 11, 2024.

IT

IT Cybersecurity Encryption Cloud

Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT

Security Affairs

AUGUST 19, 2024

Microsoft has addressed a zero-day vulnerability, tracked as CVE-2024-38193 (CVSS score: 7.8), which has been exploited by the North Korea-linked Lazarus APT group. The vulnerability, tracked as CVE-2024-38193 (CVSS score: 7.8), is a privilege escalation issue that resides in the Windows Ancillary Function Driver (AFD.sys) for WinSock.

Access

Access Security Marketing IT

Embedded Analytics Insights for 2024

From data security to generative AI, read the report to learn what developers care about including: Why organizations choose to build or buy analytics How prepared organizations are in 2024 to use predictive analytics & generative AI Leading market factors driving embedded analytics decision-making

Analytics

Change Healthcare data breach exposed the private data of over half the U.S.

Security Affairs

JANUARY 26, 2025

In October 2024, UnitedHealth Group announced that the data breach suffered by Change Healthcare in February 2024 impacted more than 100 million individuals. reads an update published by the company on February 29, 2024. The final figure represents well over half of the U.S. population.”

Data breaches

Data breaches Insurance Ransomware Cybersecurity

Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks

Security Affairs

OCTOBER 11, 2024

Sophos researchers warn that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware. Sophos reports ransomware operators are exploiting a critical code execution flaw in Veeam Backup & Replication.

Ransomware

Ransomware Authentication Access Cloud

Hackers exploit Microsoft Defender SmartScreen bug CVE-2024-21412 to deliver ACR, Lumma, and Meduza Stealers

Security Affairs

JULY 25, 2024

The CVE-2024-21412 flaw in the Microsoft Defender SmartScreen has been exploited to deliver information stealers such as ACR Stealer, Lumma, and Meduza. Fortinet FortiGuard Labs researchers observed a malware campaign exploiting the vulnerability CVE-2024-21412 (CVSS score: 8.1) with booby-trapped files.

Education

Education Security Information Security Cybersecurity

15 surprising ways I used AI to save me weeks of work in 2024

Collaboration 2.0

DECEMBER 23, 2024

In 2024, AI became truly helpful. Here are 15 clever ways I integrated it into my workflow for quicker, better results - and what I hope to do with it in 2025.

IT

Enterprise ABM Marketing Tools: A Marketers Guide

Advertiser: ZoomInfo

This Martech Intelligence Report on Enterprise Account-Based Marketing examines the state of ABM in 2024 and what to consider when implementing ABM software. What are the key elements and capabilities of ABM that can make a real difference? How is AI changing workflows and driving functionality?

Marketing

U.S. CISA adds Cisco Smart Licensing Utility flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

MARCH 31, 2025

Cybersecurity and Infrastructure Security Agency (CISA) added a Cisco Smart Licensing Utility vulnerability, tracked as CVE-2024-20439 , to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2024-20440 (CVSS score: 9.8) The vulnerability is due to excessive verbosity in a debug log file. reads the advisory.

IT

IT Cybersecurity Access Passwords

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

Security Affairs

DECEMBER 2, 2024

Our goal is to deploy 200 new WebTunnel bridges by the end of this December (2024) to open secure access for users in Russia.” Tunnel bridges have grown from 60 to 143 since early 2024, but they are not enough. . “We are calling on the Tor community and the Internet freedom community to help us scale up WebTunnel bridges.

Government

Government Access Security IT

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

The Last Watchdog

DECEMBER 5, 2024

5, 2024, CyberNewswire — One Identity proudly announces it has been named a winner in the Hot Company: Privileged Access Management (PAM) category in the 12th annual Cyber Defense Awards by Cyber Defense Magazine (CDM), the industrys leading information security magazine. Alisa Viejo, Calif.,

Cybersecurity

Cybersecurity Access Authentication Marketing

Veeam addressed critical Service Provider Console (VSPC) bug

Security Affairs

DECEMBER 4, 2024

Veeam released security updates for a critical vulnerability, tracked as CVE-2024-42448 (CVSS score of 9.9) Veeam also addressed a vulnerability, tracked as CVE-2024-42449 (CVSS score 7.1) After the Akira and Fog ransomware attacks, experts warned of threat actors attempting to deploy Frag ransomware actively exploiting CVE-2024-40711.

Ransomware

Ransomware Cloud IT Security

Strategic CX: A Deep Dive into Voice of the Customer Insights for Clarity

Speaker: Nicholas Zeisler, CX Strategist & Fractional CXO

Save your seat for this exclusive webinar today, so that you can make 2024 your best year of CX yet! 🚀 📍 March 26th, 2024 at 9:30 am PDT, 12:30 pm EDT, 4:30 pm BST Are you excited to actually start making sense of customer analytics?

Customer Experience

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024

Webinars

Trending Sources

CVE-2024-44243 macOS flaw allows persistent malware installation

Webinars

Storm-2372 used the device code phishing technique since August 2024

A Tale of Two Case Studies: Using LLMs in Production

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

AI & Automation Trends: 2024 Insights & 2025 Outlook

Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Generative AI Deep Dive: Advancing from Proof of Concept to Production

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Mazda Connect flaws allow to hack some Mazda vehicles

Internet Archive data breach impacted 31M users

Improving the Accuracy of Generative AI Systems: A Structured Approach

Adobe is aware that ColdFusion bug CVE-2024-53961 has a known PoC exploit code

Microsoft Patch Tuesday security updates for August 2024 addressed six actively exploited bugs

Over 20,000 internet-exposed VMware ESXi instances vulnerable to CVE-2024-37085

Broadcom fixed Critical VMware vCenter Server flaw CVE-2024-38812

Launching LLM-Based Products: From Concept to Cash in 90 Days

VMware fixed five vulnerabilities in Aria Operations product

Ransomware gangs exploit recently patched VMware ESXi bug CVE-2024-37085

Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401

Change Healthcare data breach impacted over 100 million people

Your Expert Guide to CX Orchestration & Enhancing Customer Journeys

OnePoint Patient Care data breach impacted 795916 individuals

The best Linux distribution of 2024 is MacOS-like but accessible to all

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

SolarWinds fixed critical RCE CVE-2024-28991 in Access Rights Manager

Reimagining CX: How to Implement Effective AI-Driven Transformations

Critical Zimbra Postjournal flaw CVE-2024-45519 actively exploited in the wild. Patch it now!

Microsoft Patch Tuesday security updates for September 2024 addressed four actively exploited zero-days

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT

Embedded Analytics Insights for 2024

Change Healthcare data breach exposed the private data of over half the U.S.

Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks

Hackers exploit Microsoft Defender SmartScreen bug CVE-2024-21412 to deliver ACR, Lumma, and Meduza Stealers

15 surprising ways I used AI to save me weeks of work in 2024

Enterprise ABM Marketing Tools: A Marketers Guide

U.S. CISA adds Cisco Smart Licensing Utility flaw to its Known Exploited Vulnerabilities catalog

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

Veeam addressed critical Service Provider Console (VSPC) bug

Strategic CX: A Deep Dive into Voice of the Customer Insights for Clarity

Stay Connected