security

MinIO storage system exploited by hackers to target corporate … – TechRadar


If your MinIO client app was replaced with its evil twin that leaks sensitive data to third parties, would you notice? Some hackers are betting you wouldn’t, as that’s exactly what they have been doing against certain endpoints, researchers from Security Joes recently discovered.

In a detailed writeup, cybersecurity experts from Security Joes said they observed some threat actors chaining together two relatively unknown vulnerabilities: CVE-2023-28432 (CVSS score: 7.5) and CVE-2023-28434 (CVSS score: 8.8).



READ SOURCE

This website uses cookies. By continuing to use this site, you accept our use of cookies.