The American authorities announced that one of the federal institutions of the country was successfully hacked simultaneously by several hacker groups. All exploited a vulnerability that was discovered four years ago and has a critical hazard rating of 9.8 out of 10. This was reported by the portal. TechCrunch.
The vulnerability CVE-2019-18935, which was first revealed in 2019, was located in a tool called Telerik, which is designed to develop web application components. The hackers were able to remotely execute malicious code on the web server of one of the departments belonging to the executive branch and gain full access to its data.
At the same time, the vulnerability scanner did not detect a vulnerability because Telerik was installed outside of its normal scanning area. The Cyber Security and Infrastructure Protection Agency (CISA) has urged all users of the software in question to upgrade to the latest version.
Formerly socialbites.ca we talked about itGroup-IB has calculated an increase in hacker attacks using ransomware for money.