The Rise of AI-Powered Threats At TechState, the security and integrity of your systems are our top priorities. Today, we are addressing a critical vulnerability, CVE-2024-45519, which affects Zimbra Collaboration Suite (ZCS), a widely-used open-source platform for email and collaboration. What Is CVE-2024-45519? This vulnerability impacts multiple versions of Zimbra Collaboration, including: – Before 8.8.15 Patch 46 – Before 9.0.0…
Protecting Your Digital Fortress In an era where technology permeates every aspect of our lives, cybersecurity has never been more critical. With the rapid evolution of cyber threats, it’s imperative for individuals and organizations alike to fortify their digital defenses. As we navigate through 2024, let’s explore some key strategies to safeguard against cyber threats and protect our digital assets….
New DEEP#GOSU Malware Campaign A new elaborate attack campaign has been observed employing PowerShell and VBScript malware to infect Windows systems and harvest sensitive information. Cybersecurity company Securonix, which dubbed the campaign DEEP#GOSU, said it’s likely associated with the North Korean state-sponsored group tracked as Kimsuky. “The malware payloads used in the DEEP#GOSU represent a sophisticated, multi-stage threat designed to…
Git security vulnerabilities The Git project has recently released new versions to address security vulnerabilities, specifically, CVE-2022-41903 and CVE-2022-23521, which affect versions 2.39 and older. Git for Windows was also patched to address an additional, Windows-specific issue known as CVE-2022-41953. The first two vulnerabilities affect Git’s commit formatting mechanism and .gitattributes parser, respectively. The former can be used to perform…
FortiOS, FortiProxy, FortiSwitchManager Authentication Bypass Researchers claim that the recently discovered FortiOS, FortiProxy, and FortiSwitchManager CVE-2022-40684 vulnerability has already been used in the wild. We would want to offer more information on the vulnerability. In this article, we cover FortiOS 7.2.1’s enabling of logging and IOCs. According to the preliminary assessments, these actions will probably also protect additional sensitive items….
Uber Hacked – Internal Systems Breached Uber, one of the world’s leading ride-sharing companies, experienced a significant breach of its internal systems, raising serious concerns about cybersecurity. The attack resulted in unauthorized access to several critical systems, including tools used for communication, software code, and sensitive internal documents. The Incident The breach reportedly involved social engineering, one of the most…
