US CISA added remote code execution vulnerability in Plex Media Server to its Known Exploited Vulnerabilities Catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a remote code execution (RCE) vulnerability in the Plex Media Server, tracked as CVE-2020-5741 (CVSS score: 7.2), to its Known Exploited Vulnerabilities Catalog. The three-year-old high-severity flaw is a deserialization of […] The post CISA adds Plex Media Server bug, exploited in LastPass attack, to Known Exploited Vulnerabilities Catalog appeared first on Security Affairs.
...moreSummary
Total Articles Found: 5
Top sources:
Top Keywords:
- LastPass: 5
- Breaking News: 2
- Hacking: 2
- hacking news: 2
- information security news: 2
Top Authors
- Pierluigi Paganini: 2
- Paul Ducklin: 1
- Graham Cluley: 1
Top Articles:
- LastPass: Keylogger on home PC led to cracked corporate password vault
- LastPass: hackers breached the computer of a DevOps engineer in a second attack
- LastPass was undone by an attack on a remote employee
- LastPass attackers steal source code, no evidence users’ passwords compromised
- CISA adds Plex Media Server bug, exploited in LastPass attack, to Known Exploited Vulnerabilities Catalog
CISA adds Plex Media Server bug, exploited in LastPass attack, to Known Exploited Vulnerabilities Catalog
Published: 2023-03-13 20:43:09
Popularity: 16
Author: Pierluigi Paganini
Keywords:
LastPass was undone by an attack on a remote employee
Published: 2023-03-01 01:45:00
Popularity: 70
Author: None
Keywords:
Categories: News Tags: LastPass Tags: remote Tags: work Tags: worker Tags: VPN Tags: media player Tags: compromise Tags: breach Tags: AWS Tags: cloud Tags: storage The attackers responsible for the LastPass breach compromised a remote worker's computer. (Read more...) The post LastPass was undone by an attack on a remote employee appeared first on Malwarebytes Labs.
...moreLastPass: Keylogger on home PC led to cracked corporate password vault
Published: 2023-02-28 02:23:16
Popularity: 140
Author: Paul Ducklin
Keywords:
Seems the crooks implanted a keylogger via a vulnerable media app (LastPass politely didn't say which one!) on a developer's home computer.
...moreLastPass: hackers breached the computer of a DevOps engineer in a second attack
Published: 2023-02-27 23:14:19
Popularity: 132
Author: Pierluigi Paganini
Keywords:
Threat actors hacked the home computer of a DevOp engineer, they installed a keylogger as part of a sophisticated cyber attack. Password management software firm LastPass disclosed a “second attack,” a threat actor used data stolen from the August security breach and combined it with information available from a third-party data breach. Then the attackers […] The post LastPass: hackers breached the computer of a DevOps engineer in a second attack appeared first on Security Affairs.
...moreLastPass attackers steal source code, no evidence users’ passwords compromised
Published: 2022-08-26 14:03:07
Popularity: 28
Author: Graham Cluley
Keywords:
LastPass, the popular password manager used by millions of people around the world, has announced that it suffered a security breach two weeks ago that saw attackers break into its systems and steal information. But don’t panic just yet – that doesn’t mean that all of your passwords are now in the hands of internet […]… Read More The post LastPass attackers steal source code, no evidence users’ passwords compromised appeared first on The State of Security.
...more