Authentication and Security - Information Management Today

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

Security Affairs

MARCH 26, 2025

Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released security updates to address a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230 (CVSS score 9.8), impacting VMware Tools for Windows. VMware Tools 12.5.1

Authentication

Authentication Cloud Access Security

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

Passwordless Authentication without Secrets! divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets.

Authentication

Authentication Retail Manufacturing Passwords

ASUS routers with AiCloud vulnerable to auth bypass exploit

Security Affairs

APRIL 18, 2025

ASUS warns of an authentication bypass vulnerability in routers with AiCloud enabled that could allow unauthorized execution of functions on the device. ASUS warns of an authentication bypass vulnerability, tracked as CVE-2025-2492 (CVSS v4 score: 9.2), which impacts routers with AiCloud enabled.

Authentication

Authentication Passwords Access Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Citrix addressed NetScaler console privilege escalation flaw

Security Affairs

FEBRUARY 20, 2025

Citrix released security updates to address a high-severity security vulnerability, tracked as CVE-2024-12284 (CVSS score of 8.8) The company pointed out that only authenticated users with existing access to the NetScaler Console can exploit this vulnerability. ” reads the advisory. NetScaler Console 14.1

Authentication

Authentication Cloud Access Security

The Modern Encryption Software Checklist: The Secret to Understanding Your Data Security Needs

Understanding your data security needs is tough enough, but what can be even more difficult is choosing the right software to fit your company. User authentication and advanced security factors. Fortunately, there is a solution. Key management system. Enterprise features. Flexibility and scalability.

Encryption

Critical GitHub Enterprise Server Authentication Bypass bug. Fix it now!

Security Affairs

MAY 22, 2024

GitHub addressed a vulnerability in the GitHub Enterprise Server (GHES) that could allow an attacker to bypass authentication. GitHub has rolled out security fixes to address a critical authentication bypass issue, tracked as CVE-2024-4985 (CVSS score: 10.0), in the GitHub Enterprise Server (GHES).

Authentication

Authentication Encryption IT Compliance

A large botnet targets M365 accounts with password spraying attacks

Security Affairs

FEBRUARY 24, 2025

A botnet of 130,000+ devices is attacking Microsoft 365 accounts via password-spraying, bypassing MFA by exploiting basic authentication. The attackers targeted accounts protected with basic authentication bypassing multi-factor authentication. Despite Microsoft phasing it out, it remains an active security risk.

Passwords

Passwords Authentication Access Cybersecurity

Critical Really Simple Security plugin flaw impacts 4M+ WordPress sites

Security Affairs

NOVEMBER 17, 2024

A Really Simple Security plugin flaw affects 4M+ sites, allowing attackers full admin access. Wordfence researchers warn of a vulnerability, tracked as CVE-2024-10924 (CVSS Score of 9.8), in the Really Simple Security plugin that affects 4M+ sites. It’s one of the most critical WordPress vulnerabilities ever. and up to 9.1.1.1

Security

Security Authentication Access IT

Critical Veeam Backup Enterprise Manager authentication bypass bug

Security Affairs

MAY 22, 2024

A critical security vulnerability in Veeam Backup Enterprise Manager could allow threat actors to bypass authentication. A critical vulnerability, tracked as CVE-2024-29849 (CVSS score: 9.8), in Veeam Backup Enterprise Manager could allow attackers to bypass authentication.

Authentication

Authentication IT Security Information Security

Monetizing Analytics Features: Why Data Visualizations Will Never Be Enough

Think your customers will pay more for data visualizations in your application? Five years ago they may have. But today, dashboards and visualizations have become table stakes. Discover which features will differentiate your application and maximize the ROI of your embedded analytics. Brought to you by Logi Analytics.

Analytics

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

NOVEMBER 7, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog. CVE-2024-43093 CVE-2024-43047″ reads the security bulletin published by Google. The researcher Brian Hysell reported the flaw to the security vendor.

IT

IT Authentication Cybersecurity Risk

A flaw in the W3 Total Cache plugin exposes hundreds of thousands of WordPress sites to attacks

Security Affairs

JANUARY 19, 2025

The vulnerability allows authenticated attackers with Subscriber access to exploit a missing capability check, leading to information disclosure. ” Despite the availability of the security patch, hundreds of thousands of websites have yet to upgrade to the latest version, 2.8.2. .

Metadata

Metadata Authentication Consumer Services Cloud

Juniper Networks fixed a critical authentication bypass flaw in some of its routers

Security Affairs

JULY 1, 2024

Juniper Networks released out-of-band security updates to address a critical authentication bypass vulnerability impacting some of its routers. The company discovered the vulnerability during internal product security testing or research. is a Missing Authentication for Critical Function vulnerability. before 6.1.9-lts,

Authentication

Authentication IT Cloud Security

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 19, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds Veeam Backup and Replication vulnerability to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the Veeam Backup and Replication flaw CVE-2024-40711 (CVSS score of 9.8) impacting Veeam Backup & Replication (VBR).

IT

IT Ransomware Authentication Cybersecurity

QNAP fixed three flaws in its NAS devices, including an authentication bypass

Security Affairs

MARCH 8, 2024

The three flaws fixed are: CVE-2024-21899 : an improper authentication vulnerability could allow users to compromise the security of the system via a network. CVE-2024-21900 : an injection vulnerability could allow authenticated users to execute commands via a network.

Authentication

Authentication IT Access Security

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Security Affairs

NOVEMBER 8, 2024

.” Palo Alto Networks recommends reviewing best practices for securing management access to its devices. Cybersecurity and Infrastructure Security Agency (CISA) added a Palo Alto Expedition Missing Authentication Vulnerability, tracked as CVE-2024-5910 , to its Known Exploited Vulnerabilities (KEV) catalog.

Authentication

Authentication Cybersecurity Access Communications

Hackers obtained user data from Twilio-owned 2FA authentication app Authy

Security Affairs

JULY 4, 2024

Twilio states that threat actors have identified the phone numbers of users of its two-factor authentication app, Authy, TechCrunch reported. This week the messaging firm told TechCrunch that “threat actors” identified data of Authy users, a two-factor authentication app owned by Twilio, including their phone numbers.

Authentication

Authentication Phishing Communications Access

ASUS fixed critical remote authentication bypass bug in several routers

Security Affairs

JUNE 16, 2024

Taiwanese manufacturer giant ASUS addressed a critical remote authentication bypass vulnerability impacting several router models. ASUS addresses a critical remote authentication bypass vulnerability, tracked as CVE-2024-3080 (CVSS v3.1 score: 9.8), impacting seven router models. impacting multiple devices.

Authentication

Authentication Manufacturing Access IT

Okta warns of credential stuffing attacks targeting its Cross-Origin Authentication feature

Security Affairs

MAY 29, 2024

The advisory published by the company states that the attacks targeted the endpoints supporting the cross-origin authentication feature, the attacks hit several customers. Such cross-domain requests would otherwise be forbidden by web browsers as indicated by the same origin security policy (opens new window). ” reads advisory.

Authentication

Authentication IT Passwords Cloud

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Security Affairs

OCTOBER 28, 2024

A long supply chain adds third-party risks, as each partner’s security affects your own, making identity and access management more challenging. Each company brings its own security (or lack thereof) into the game, so your overall security status is essentially the average of yours, plus anyone else’s to whom you’re connected (i.e.,

B2B

B2B Cybersecurity Risk Access

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

Over the years, multiple security experts have identified several vulnerabilities in MikroTik routers, such as a remote code execution vulnerability detailed by VulnCheck researchers here. ” reads the report published by Infoblox. ” concludes the report.

File names

File names Authentication Access Archiving

DeepSeek database exposed highly sensitive information

Security Affairs

JANUARY 30, 2025

After responsible disclosure, DeepSeek promptly secured the issue. ” The researchers noted that the leak could have allowed attackers to take full control of the database and potentially escalate privileges within the DeepSeek environment, without any authentication. .” ” reads the report published by Wiz.

Metadata

Metadata Authentication Access Passwords

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Security Affairs

JANUARY 15, 2025

“Threat actor dubbedCodefingeruses compromised AWS keys to encrypt S3 bucket data via SSE-C, leveraging AWSs secure encryption infrastructure in a way that prevents recovery without their generated key.” Instead, only an HMAC (hash-based message authentication code) is logged in AWS CloudTrail. Halcyon continues.

Encryption

Encryption Ransomware Authentication Cloud

Oracle privately notifies Cloud data breach to customers

Security Affairs

APRIL 6, 2025

Oracle confirms a cloud data breach, quietly informing customers while downplaying the impact of the security breach. The incident has raised serious concerns about the security of Oracles cloud infrastructure and the potential implications for affected customers. Oracle Classic has the security incident. ” Beaumont wrote.

Data breaches

Data breaches Cloud Encryption Communications

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Security Affairs

OCTOBER 12, 2024

Since April 2021, Russian state-sponsored hackers have exploited vulnerabilities, including Zimbra’s CVE-2022-27924 for injecting commands to access credentials and emails, and JetBrains TeamCity’s CVE-2023-42793 for arbitrary code execution through an authentication bypass. cyber agencies warned.

Data collection

Data collection Authentication Access Cybersecurity

Netgear urges users to upgrade two flaws impacting WiFi router models

Security Affairs

FEBRUARY 4, 2025

The two flaws are, respectively, a remote code execution issue and an authentication bypass vulnerability. The unauthenticated RCE security vulnerability PSV-2023-0039 impacts the following product models: XR1000, the issue was fixed in firmware version 1.0.0.74 XR1000v2, the issue was fixed in firmware version 1.1.0.22

Authentication

Authentication Security IT Information Security

Mirai botnet also spreads through the exploitation of Ivanti Connect Secure bugs

Security Affairs

MAY 9, 2024

Threat actors exploit recently disclosed Ivanti Connect Secure (ICS) vulnerabilities to deploy the Mirai botnet. Researchers from Juniper Threat Labs reported that threat actors are exploiting recently disclosed Ivanti Connect Secure (ICS) vulnerabilities CVE-2023-46805 and CVE-2024-21887 to drop the payload of the Mirai botnet.

Security

Security Authentication Ransomware Access

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. Upon clicking the meeting invitation embedded in the message, recipients are prompted to authenticate using a threat actor-generated device code. ” continues the report.

Phishing

Phishing Authentication Access Government

DoubleClickjacking allows clickjacking on major websites

Security Affairs

JANUARY 2, 2025

Clickjacking attacks trick users into unintended clicks, this practice has declined as modern browsers enforce “SameSite: Lax” cookies, blocking cross-site authentication. It can also manipulate users into making unauthorized account changes, such as altering security settings or confirming transactions.

Authentication

Authentication IT Security Access

U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

JANUARY 24, 2025

Cybersecurity and Infrastructure Security Agency (CISA) adds SonicWall SMA1000 vulnerability to its Known Exploited Vulnerabilities catalog. This week, SonicWall warned customers of a critical security vulnerability, tracked as CVE-2025-23006 (CVSS score of 9,8) impacting its Secure Mobile Access (SMA) 1000 Series appliances.

IT

IT Authentication Cybersecurity Access

Cisco warns of password-spraying attacks targeting Secure Firewall devices

Security Affairs

MARCH 29, 2024

Cisco warns customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services of Cisco Secure Firewall devices. Cisco is warning customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices.

Passwords

Passwords Security Authentication Access

Broadcom fixed information disclosure flaws in VMware Aria Operations

Security Affairs

JANUARY 31, 2025

Security researchers from Michelin CERT and Abicom, including Maxime Escourbiac, Yassine Bengana, and Quentin Ebel, detected and reported the vulnerabilities. is an authentication bypass vulnerability in VMware Aria Operations for Logs. The above vulnerabilities impact versions 8.x VMware Aria Operations Version 8.18.3

Authentication

Authentication Cloud Cybersecurity Access

GitLab addressed critical auth bypass flaws in CE and EE

Security Affairs

MARCH 13, 2025

GitLab addressed two critical authentication bypass vulnerabilities in Community Edition (CE) and Enterprise Edition (EE). GitLab released security updates to address critical vulnerabilities in Community Edition (CE) and Enterprise Edition (EE). ” reads the advisory published by the company. ” continues the analysis.

Authentication

Authentication Libraries Data breaches Security

An air transport security system flaw allowed to bypass airport security screenings

Security Affairs

SEPTEMBER 1, 2024

A vulnerability in an air transport security system allowed unauthorized individuals to bypass airport security screenings. These systems verify an employee’s active employment status with their airline, and depending on their status authorize to skip security screening or access the cockpit. ” added Carroll.

Security

Security Access Authentication IT

Cisco addressed severe flaws in its Secure Client

Security Affairs

MARCH 8, 2024

Cisco addressed two high-severity vulnerabilities in Secure Client that could lead to code execution and unauthorized remote access VPN sessions. Cisco released security patches to address two high-severity vulnerabilities in Secure Client respectively tracked as CVE-2024-20337 and CVE-2024-20338.

Security

Security IT Authentication Libraries

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Security Affairs

NOVEMBER 15, 2024

The malware could harvest a huge trove of data from infected systems, including cookies, autofill, cryptocurrency wallets, 2FA authenticators, password managers, and email client information. Glove Stealer is a.NET-based information stealer that targets browser extensions and locally installed software to steal sensitive data.

Encryption

Encryption File names Phishing Passwords

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” Hunt also verified the authenticity of the information included in the stolen archive. Hunt will add the information of the impacted users to HIBP very soon.

Archiving

Archiving Data breaches Passwords File names

Why multi-factor authentication is absolutely essential in 2025

Collaboration 2.0

APRIL 1, 2025

Two-factor authentication is a crucial security measure that requires an extra step for signing in to high-value services. Want to avoid having your online accounts hacked? Here's how to set up 2FA and which accounts to focus on.

Authentication

Authentication Security

After Customers Get Breached, Snowflake Refines Security

Data Breach Today

JULY 10, 2024

Mandatory Multifactor Authentication Among New Features Given to Administrators In the wake of multiple customers of Snowflake collectively losing terabytes of data to attackers, the cloud-based data warehousing platform has rolled out a swath of cybersecurity improvements, including allowing administrators to make multifactor authentication mandatory (..)

Authentication

Authentication Security Cloud Cybersecurity

Palo Alto Networks fixed a high-severity PAN-OS flaw

Security Affairs

DECEMBER 27, 2024

“A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. when access is limited to authenticated end users via Prisma Access. It is fixed in PAN-OS 10.1.14-h8,

Access

Access Authentication Cloud Cybersecurity

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

Security Affairs

DECEMBER 19, 2024

ai security researcher Zach Hanley (@hacks_zach) reported this vulnerability to Fortinet. ” The experts added that FortiWLM’s verbose logs expose session IDs, enabling attackers to exploit log file read vulnerabilities to hijack sessions and access authenticated endpoints. ” reads the advisory published by the vendor.

Authentication

Authentication Education Access IT

Roku disclosed a new security breach impacting 576,000 accounts

Security Affairs

APRIL 12, 2024

Credential stuffing is a type of attack in which hackers use automation and lists of compromised usernames and passwords to defeat authentication and authorization mechanisms, with the end goal of account takeover (ATO) and/or data exfiltration.” The company has enabled two-factor authentication (2FA) by default for all customer accounts.

Security

Security Passwords Authentication Data breaches

Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 2, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Security Ransomware Phishing

News alert: Wultra secures €3M funding to help financial firms mitigate coming quantum threats

The Last Watchdog

JANUARY 15, 2025

15, 2025, CyberNewswire — Quantum computing is set to revolutionize technology, but it also presents a significant security risk for financial institutions. Theinvestment comes as global concern grows over the vulnerability of traditional security methods. Prague, Czech Republic, Jan.

Authentication

Authentication Security Marketing Compliance

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

Passwordless Authentication without Secrets!

Webinars

Trending Sources

ASUS routers with AiCloud vulnerable to auth bypass exploit

Webinars

Citrix addressed NetScaler console privilege escalation flaw

The Modern Encryption Software Checklist: The Secret to Understanding Your Data Security Needs

Critical GitHub Enterprise Server Authentication Bypass bug. Fix it now!

A large botnet targets M365 accounts with password spraying attacks

Critical Really Simple Security plugin flaw impacts 4M+ WordPress sites

Critical Veeam Backup Enterprise Manager authentication bypass bug

Monetizing Analytics Features: Why Data Visualizations Will Never Be Enough

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

A flaw in the W3 Total Cache plugin exposes hundreds of thousands of WordPress sites to attacks

Juniper Networks fixed a critical authentication bypass flaw in some of its routers

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

QNAP fixed three flaws in its NAS devices, including an authentication bypass

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Hackers obtained user data from Twilio-owned 2FA authentication app Authy

ASUS fixed critical remote authentication bypass bug in several routers

Okta warns of credential stuffing attacks targeting its Cross-Origin Authentication feature

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

MikroTik botnet relies on DNS misconfiguration to spread malware

DeepSeek database exposed highly sensitive information

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Oracle privately notifies Cloud data breach to customers

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Netgear urges users to upgrade two flaws impacting WiFi router models

Mirai botnet also spreads through the exploitation of Ivanti Connect Secure bugs

Storm-2372 used the device code phishing technique since August 2024

DoubleClickjacking allows clickjacking on major websites

U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog

Cisco warns of password-spraying attacks targeting Secure Firewall devices

Broadcom fixed information disclosure flaws in VMware Aria Operations

GitLab addressed critical auth bypass flaws in CE and EE

An air transport security system flaw allowed to bypass airport security screenings

Cisco addressed severe flaws in its Secure Client

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Internet Archive data breach impacted 31M users

Why multi-factor authentication is absolutely essential in 2025

After Customers Get Breached, Snowflake Refines Security

Palo Alto Networks fixed a high-severity PAN-OS flaw

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

Roku disclosed a new security breach impacting 576,000 accounts

Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION

News alert: Wultra secures €3M funding to help financial firms mitigate coming quantum threats

Stay Connected