Three vulnerabilities in pfSense firewall software, affecting versions before 2.8.0 beta, could allow authenticated attackers to inject malicious code, manipulate backups, and achieve remote code execution. The flaws involve the Automatic Configuration Backup service (CVE-2024-57273), OpenVPN widget (CVE-2024-54780), and dashboard widgets (CVE-2024-54779). Patches are available for mitigation; users are urged to update immediately.
Docker Zombie Malware Infects Containers to Mine Crypto and Self-Replicate
A sophisticated malware targeting Docker containers has been discovered which autonomously turns containers into crypto-mining nodes, while scanning for new victims. The malware uses a
