redis - Tagged - Security Boulevard

New P2P Worm Puts Windows and Linux Redis Servers in its Sights

Jeffrey Burt — Thu, 20 Jul 2023 16:35:18 +0000

A new peer-to-peer (P2P) worm, P2PInfect, is spreading across instances of the Redis open source database software in the cloud.

The post New P2P Worm Puts Windows and Linux Redis Servers in its Sights appeared first on Security Boulevard.

ChatGPT Vulnerability: Redis Vulnerability Exposes User Payment Data

Ofri Ouzan — Fri, 31 Mar 2023 15:36:57 +0000

OpenAI’s ChatGPT was forced to halt service for a few hours earlier this week in order to fix an issue in an open-source library. The vulnerability may have exposed some users’ payment data. The company published a blog post on March 24, 2023, explaining what lead to the data breach and why it was temporarily ... ChatGPT Vulnerability: Redis Vulnerability Exposes User Payment Data

The post ChatGPT Vulnerability: Redis Vulnerability Exposes User Payment Data appeared first on Rezilion.

The post ChatGPT Vulnerability: Redis Vulnerability Exposes User Payment Data appeared first on Security Boulevard.

Multi-Factor Authentication (MFA) with Redis Cache and OTP

Fredrick Emmanuel — Thu, 30 Jun 2022 00:00:00 +0000

Want to implement Multi-Factor Authentication (MFA)? Follow this tutorial to implement MFA using Redis Cache and OTP in your applications.

The post Multi-Factor Authentication (MFA) with Redis Cache and OTP appeared first on Security Boulevard.

Who’s your fridge talking to at night?

Gary Fisk — Thu, 19 Nov 2020 16:00:35 +0000

By Gary Fisk, Sales Engineer, Corelight I love origin stories – the tales of grand plans, unforeseen circumstances, and necessity that creates something new. These strange times have resulted in something new from Corelight, and I’d like to share how it came to be. 2020 has upended virtually every aspect of our lives, and has...Read more »

The post Who’s your fridge talking to at night? appeared first on Security Boulevard.

RIG Exploit Kit Starts Using IE Zero-Day Flaw Patched in May

Lucian Constantin — Fri, 01 Jun 2018 20:11:10 +0000

The latest version of the RIG exploit kit, a tool used by cybercriminals to launch large-scale drive-by download attacks, is exploiting an Internet Explorer vulnerability that was patched by Microsoft last month after being found in targeted cyberespionage attacks. Tracked as CVE-2018-8174, the flaw is located in the Windows VBScript engine and can be exploited..

The post RIG Exploit Kit Starts Using IE Zero-Day Flaw Patched in May appeared first on Security Boulevard.

New research shows 75% of ‘open’ Redis servers infected

Nadav Avital — Fri, 01 Jun 2018 15:01:03 +0000

Since our initial report on the RedisWannaMine attack that propagates through open Redis and Windows servers, we’ve been hearing about more and more attacks on Redis servers. Redis is a great tool, it can serve as in-memory distributed database, cache or a message broker and is widely popular. Redis is aimed at high performance and […]

The post New research shows 75% of ‘open’ Redis servers infected appeared first on Security Boulevard.

Worm Infects Redis, Windows Servers with Cryptomining Malware

Lucian Constantin — Thu, 08 Mar 2018 19:57:44 +0000

Security researchers have come across a new cryptojacking worm that infects Redis and Windows servers with cryptomining malware. The attack, which has been dubbed RedisWannaMine by researchers from security firm Imperva, scans for misconfigured Redis deployments and Windows Servers that are still vulnerable to the Eternal Blue SMB exploit. While investigating an attack against a..

The post Worm Infects Redis, Windows Servers with Cryptomining Malware appeared first on Security Boulevard.