Cyber security news for all

More

    BIG-IP products could lead to widespread cyberattacks

    Due to several security gaps, attackers could attack the BIG-IP Appliances. None of the security gaps are considered critical. Nevertheless, admins should install the patches promptly.

    If attacks are successful, attackers could take the appliances out of circulation using a DoS attack. If necessary, attackers could even execute malicious code on systems. In such cases, devices are usually considered to be completely compromised. These vulnerabilities are classified as high with the threat level. After a successful attack on the traffic management, attackers could paralyze all data traffic. Due to a bug, some BIG-IP servers ignore revoked certificates and attackers could hook into connections. In another attack scenario, attackers could overwrite files. In these cases experts speak of a high risk too. The remaining vulnerabilities are rated medium and low. Here attackers could carry out attacks and manipulate encryption settings.

    BIG-IP

    The importance of this security gap for the companies concerned is enormous, as attackers can exploit such insecurely configured to use compromised BIG-IP devices as a starting point for further attacks. It is also possible for attackers to intercept and manipulate web traffic. By disclosing sensitive information, including login data and personal application secrets, users of affected web services can thus be targeted victims of attacks.

    As long as a company has not carried out a thorough technical review of its systems, there is a high probability that it will be affected by the vulnerability. “Even someone who is incredibly security conscious and works in a security well equipped company could overlook this loophole. For this reason, education about this issue is really important owners want to help companies better protect themselves against a possible threat scenario.

    List sorted by threat level in descending order:

    Recent Articles

    Maze leaks data on its own platform

    The Maze ransomware has been up to almost a year and a half. This week, security experts warned about the actions of the cyber...

    Emotet to spread the malware behind email archives

    If you find an attached pack to an email these days, you should be particularly careful: the highly developed malware Emotet could be lurking...

    500,000 Activision accounts have been leaked

    Activision has taken a position on the alleged leak. According to the publisher, there has never been a data leak. In some cases it is...

    Judge issues injunction against WeChat

    The US government wanted to take action against the app WeChat. A judge stood sideways. The app should disappear from the platforms in the...

    Mail provider Tutanota becomes target of cyber attacks

    Over the weekend, ongoing DDoS attacks and an infrastructure problem resulted in downtime for hundreds of users. While some were able to mitigate most...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox