Cybercriminals are exploiting a ThinkPHP vulnerability, recently patched in December 2018. The attackers are using exploited systems to then propagate two new botnets - Yowai (variant of Mirai) and Hakai (variant of Gafgyt).
Cisco released a security update to fix a critical vulnerability in the vContainer of the Cisco SD-WAN Solution. A remote authenticated attacker could cause a denial of service (DoS) condition and execute arbitrary code as the root user.
Apple released security updates that address vulnerabilities in multiple products, to include iOS, macOS, Safari, watchOS, iCloud and tvOS.
Drupal has released a critical security update to address a vulnerability in Drupal 7.x, 8.5.x and 8.6.x. The vulnerability is rated critical and impacts third party libraries.
Oracle has released its Critical Patch Update for January 2019 to include 284 vulnerability fixes across multiple products. Oracle continues to receive reports of remote attackers attempting to maliciously exploit unpatched vulnerabilities.
Cisco released two security updates that fix vulnerabilities in its email security appliance (ESA) software.
Microsoft issued the January 2019 Security Updates that include nearly 50 unique vulnerability fixes, 7 of them rated critical.
Attackers are using a variant of the infamous Mirai IoT botnet dubbed "Miori" to exploit a Remote Code Execution (RCE) vulnerability in ThinkPHP, a free open-source PHP framework.
The critical zero-day "Scripting Engine Memory Corruption" vulnerability (CVE-2018-8653) is being actively exploited on Windows systems by hackers.
Cisco has patched a vulnerability in the authorization subsystem of Cisco's Adaptive Security Appliance (ASA) Software. An authenticated, unprivileged remote attacker could exploit the vulnerability to perform privileged actions by using the ASA web management interface.