June 6, 2023

Researchers have come up with a warning that threat actors are exploiting a critical vulnerability in an IBM file-exchange application in hacks that install ransomware on servers.

The IBM Aspera Faspex is a centralized file-exchange application that large organizations use to transfer large files or large volumes of files at very high speeds that uses IBM’s proprietary FASP short for Fast, Adaptive, and Secure Protocol to better utilize available network bandwidth.

Advertisements

Earlier this year, IBM warned of a critical vulnerability in Aspera versions 4.4.2 Patch Level 1 and earlier and urged users to install an update to patch the flaw.

Tracked as CVE-2022-47986, the vulnerability makes it possible for unauthenticated threat actors to remotely execute malicious code by sending specially crafted calls to an outdated programming interface. The ease of exploiting the vulnerability and the damage that could result earned CVE-2022-47986 a severity rating of 9.8 out of a possible 10.

Researchers from security firm Rapid7 said they recently responded to an incident in which a customer was breached using the vulnerability and its used to deploy ransomware.

Researchers have reported that the vulnerability is being exploited to install ransomware known as Buhti and as well as IceFire.

Advertisements

IBM patched the vulnerability in January and republished its advisory earlier this month to ensure no one missed it.

Tags:

Leave a Reply

You may have missed

Byte Code Bites PYPI

Byte Code Bites PYPI

June 5, 2023
Enzo Biochem Suffers a Data Breach

Enzo Biochem Suffers a Data Breach

June 5, 2023
BlackSuit Ransomware Dissection

BlackSuit Ransomware Dissection

June 4, 2023
TheCyberThrone CyberSecurity Newsletter Top 5 Articles – May, 2023

TheCyberThrone CyberSecurity Newsletter Top 5 Articles – May, 2023

June 4, 2023
Cisco buys Armorblox

Cisco buys Armorblox

June 3, 2023
CISA KEV Update Part I – May 2023

CISA KEV Update Part I – May 2023

June 3, 2023
%d bloggers like this: