Cybersecurity News India: Daily Threat & Breach Analysis

3 months ago Critical Security

Shellshock (CVE-2014-6271) — How a 25-Year-Old Bash Bug Exposed Every Unix System on the Internet: Anatomy of the Server-Side Catastrophe

A code path in Bash going back 25 years allowed environment variables to contain executable function definitions plus extra commands — turning every CGI-running web server into a remote-execution target overnight.

3 months ago Critical Security

Spectre & Meltdown 2018 — How Speculative Execution in Every Modern CPU Created Side-Channel Attack Vectors: Anatomy & Persistent Mitigations

Three vulnerabilities affecting virtually every CPU manufactured for the previous 20 years exploited speculative execution to leak data across security boundaries — kernel memory, neighbouring processes, virtual machine boundaries.

3 months ago Critical Security

Stuxnet (2010) — How a US-Israeli Cyber Weapon with Four Zero-Days Sabotaged Iran’s Nuclear Program: The First True Cyber-Kinetic Attack

Four Windows zero-days plus stolen code-signing certificates plus deep knowledge of Siemens industrial systems plus an air-gap-bridging USB worm equals the first cyber weapon to cause physical damage in the world.

3 months ago Critical Security

Equifax Breach 2017 — How an Unpatched Apache Struts Vulnerability Cost 147M Americans Their Identities: $1.4B Settlement Analysis

A two-month-old Apache Struts patch that Equifax had not deployed allowed attackers to access internal systems and exfiltrate personally-identifying data on 147 million Americans — nearly half the US population.

3 months ago Critical Security

ProxyLogon & Hafnium 2021 — How Four Microsoft Exchange Zero-Days Compromised 250,000+ Servers Globally: The Most Damaging Mass Exploitation in History

Four chained zero-days in on-premises Microsoft Exchange Server — exploited first by Chinese APT Hafnium, then by half a dozen other threat groups within weeks of disclosure — produced the worst Exchange Server attack in history.

3 months ago Critical Security

XZ Utils Backdoor (CVE-2024-3094) — How a Two-Year Social Engineering Operation Almost Backdoored Linux SSH: The Closest Call in Open Source History

A patient, two-year social-engineering campaign by an attacker called "Jia Tan" inserted a sophisticated backdoor into XZ Utils that would have given attackers SSH access to most Linux servers. Discovered with days to spare by a Microsoft engineer noticing a 500ms login delay.

3 months ago High Security

regreSSHion (CVE-2024-6387) — How a Reintroduced 18-Year-Old Bug Made 14M OpenSSH Servers Vulnerable to Pre-Auth RCE: Anatomy & Lessons

A signal handler race condition reintroduced into OpenSSH in version 8.5p1 (2020) created a pre-authentication remote code execution vulnerability affecting approximately 14 million internet-facing OpenSSH servers — the most consequential SSH vulnerability in over a decade.

Latest cybersecurity news.

Shellshock (CVE-2014-6271) — How a 25-Year-Old Bash Bug Exposed Every Unix System on the Internet: Anatomy of the Server-Side Catastrophe

Spectre & Meltdown 2018 — How Speculative Execution in Every Modern CPU Created Side-Channel Attack Vectors: Anatomy & Persistent Mitigations

Stuxnet (2010) — How a US-Israeli Cyber Weapon with Four Zero-Days Sabotaged Iran’s Nuclear Program: The First True Cyber-Kinetic Attack

Equifax Breach 2017 — How an Unpatched Apache Struts Vulnerability Cost 147M Americans Their Identities: $1.4B Settlement Analysis

ProxyLogon & Hafnium 2021 — How Four Microsoft Exchange Zero-Days Compromised 250,000+ Servers Globally: The Most Damaging Mass Exploitation in History

XZ Utils Backdoor (CVE-2024-3094) — How a Two-Year Social Engineering Operation Almost Backdoored Linux SSH: The Closest Call in Open Source History

regreSSHion (CVE-2024-6387) — How a Reintroduced 18-Year-Old Bug Made 14M OpenSSH Servers Vulnerable to Pre-Auth RCE: Anatomy & Lessons