cognitive cybersecurity intelligence

News and Analysis

Search

Cloud Attackers Exploit Max-Critical Aviatrix RCE Flaw

A maximum-severity security bug in the Aviatrix Controller platform is being targeted by multiple threat actors, who are exploiting it to deploy malware. The bug, present in all supported Aviatrix Controller versions before 7.2.4996 or 7.1.4191, allows privilege escalation on Amazon Web Services and permits remote adversaries to run arbitrary commands. Some attacks involve deployment of XMRig cryptomining malware and Sliver backdoors. Many companies remain vulnerable, and Aviatrix strongly encourages the application of their issued patch as a protection.

Source: www.darkreading.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts

How to Root Out Malicious Employees

Insider threats pose one of the largest security risks to organizations, and often go unnoticed or unaddressed. Malicious and negligent employees can commit devastating acts,