instances

Blog
digitpatrox7 days ago
89

Over 46,000 Grafana instances exposed to account takeover bug

More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability that allows executing a malicious plugin and account takeover. The flaw is tracked as CVE-2025-4123 and impacts multiple versions of the open-source platform used for monitoring and visualizing infrastructure and application metrics. The vulnerability was discovered by bug bounty hunter Alvaro Balada and was addressed in…
Read More »
Blog
digitpatrox2 weeks ago
42

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

Over 84,000 Roundcube webmail installations are vulnerable to CVE-2025-49113, a critical remote code execution (RCE) flaw with a public exploit. The flaw, which impacts Roundcube versions 1.1.0 through 1.6.10, spanning over a decade, was patched on June 1, 2025, following its discovery and reporting by security researcher Kirill Firsov. The bug stems from unsanitized $_GET[‘_from’] input, enabling PHP object deserialization…
Read More »
Blog
digitpatroxFebruary 14, 2025
110

whoAMI attacks give hackers code execution on Amazon EC2 instances

Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. Dubbed “whoAMI,” the attack was crafted by DataDog researchers in August 2024, who demonstrated that it’s possible for attackers to gain code execution within AWS accounts by exploiting how software projects retrieve…
Read More »
Blog
digitpatroxOctober 30, 2024
203

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

Over 22,000 CyberPanel instances exposed online to a critical remote code execution (RCE) vulnerability were mass-targeted in a PSAUX ransomware attack that took almost all instances offline. This week, security researcher DreyAnd disclosed that CyberPanel 2.3.6 (and likely 2.3.7) suffers from three distinct security problems that can result in an exploit allowing unauthenticated remote root access without authentication. Specifically, the researcher…
Read More »

instances

Over 46,000 Grafana instances exposed to account takeover bug

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

whoAMI attacks give hackers code execution on Amazon EC2 instances

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

Early Amazon Prime Day deals are live from $6 — here’s everything I’d shop this weekend

What happens when AI comes for our fonts?

Eight Home Maintenance Myths You Should Stop Believing

12 Google Docs Hacks Every Student Should Know

Wordle Answer for Today, September 10, 2024

1win — официальный сайт букмекерской конторы 1вин.1811

Applebee’s and IHOP have plans for AI

DuckDuckGo’s ‘Scam Blocker’ Just Got a Big Upgrade

I Never Build a PC Without This Often-Overlooked Component

Texas Board of Physical Therapy Examiners breached, SSNs and other info compromised

TikTok Is Pushing Old and False News as ”Breaking” Alerts

Today’s AI models have a poor grasp of world history – Computerworld