Green Alliance Threat Intelligence Weekly Report (2025.01.13-2025.01.19) – Green Alliance Technology Blog

Keypoints :

• Rsync has identified and patched critical buffer overflow and information disclosure vulnerabilities (CVE-2024-12084/CVE-2024-12085).
• Microsoft issued updates for 159 security issues on January 14, 2025, impacting multiple products, including Windows and Azure.
• Fortinet has remedied a critical authentication bypass vulnerability (CVE-2024-55591) in FortiOS and FortiProxy, allowing unauthenticated access to administrator privileges.
• A new botnet comprising 13,000 MikroTik devices is exploiting misconfigured SPF DNS records to spread malware.
• A group known for “hacker-as-a-service” has exploited Microsoft’s Azure AI services to generate harmful content.
• JMX framework vulnerabilities could potentially impact system management capabilities.
• A Telegram-based market has emerged as the largest illegal online marketplace, surpassing Hydra with billion in transactions.
• Adobe has released security updates for multiple products to fix vulnerabilities allowing remote code execution.
• FunkSec, a new ransomware, has reportedly affected 85 organizations and could be AI-generated.
• Rsync servers have multiple severe vulnerabilities that could lead to remote code execution.
• An OpenAI web scraper has caused disruptions to a 3D model website, resembling a DDoS attack.