2025-01-28 14:29:53 Pacfic
Prometheus Servers Exposed to DoS and RCE - 14d
Over 300,000 Prometheus monitoring servers and exporters are exposed to various attacks, including information disclosure, denial-of-service (DoS), and potential remote code execution. These vulnerabilities stem from improper authentication and insecure configurations, allowing attackers to steal sensitive information such as credentials and API keys. The widespread exposure highlights the need for better security practices in Prometheus deployments and the critical nature of securing monitoring infrastructure.
Alleged Russian Interference in Romanian Presidential Election - 20d
The Romanian presidential election was annulled following allegations of Russian interference, involving 25,000 fake accounts and 85,000 cyberattacks on election systems. The interference involved coordinated disinformation campaigns and social media manipulation. The EU is tightening its control over TikTok as a consequence of this event. The incident highlights the increasing risk of foreign interference in democratic processes using digital platforms and cyberattacks. This shows how election systems can be manipulated to affect the outcome of elections.
Russian Meddling in Romanian Presidential Elections - 20d
Romania’s presidential election was annulled due to alleged Russian meddling on TikTok. Over 25,000 fake accounts and 85,000 cyberattacks were launched, along with a coordinated disinformation campaign. Leaked credentials for election-related websites were posted on a Russian hacker forum. This highlights the increasing sophistication of foreign interference in democratic processes using social media and advanced cyberattacks. The scale and coordination of these attacks indicate a significant effort to manipulate the election outcome.
Infoblox Warns of 'Sitting Ducks' DNS Hijacking Attacks - 13d
Infoblox has issued a warning about a critical attack vector called the ‘Sitting Ducks attack’ that allows threat actors to gain complete control over a domain by hijacking its DNS configurations. This attack exploits misconfigurations in DNS settings, specifically when the domain server incorrectly points to the wrong authoritative name server. The attack leverages ‘lame delegation,’ a technique where a domain’s authoritative name server is misconfigured, allowing attackers to redirect traffic to their controlled servers. Infoblox has identified over 1 million registered domains vulnerable to this attack. The company has published a detailed report with indicators of compromise to assist organizations in mitigating this threat.