Windows Themes zero-day bug exposes users to NTLM credential theft

A New Bypass Detected by ACROS Security A new zero-day vulnerability has been exposed recently! The newly discovered zero-day bug on Windows Theme files is exposing people’s NTLM credentials. It is one of the serious risks identified recently by Akamai researcher, Tomer Peled. Researchers at ACROS security have reported that this vulnerability is a serious […]

Windows Themes zero-day bug exposes users to NTLM credential theft Read More »

[Action Required] Deprecation of Amazon RDS M4, R4, and T2 database instance types on MySQL, MariaDB, and PostgreSQL [AWS Account: ]

You have probably landed here with an email notification received from AWS. You are not alone! Yes, AWS is indeed deprecating the M4, R4, or T2 instance types. So you should migrate your instance to the next available series before May 31, 2024 Upgrade Path If you need any support for this migration, we HAZERCLOUD

[Action Required] Deprecation of Amazon RDS M4, R4, and T2 database instance types on MySQL, MariaDB, and PostgreSQL [AWS Account: ] Read More »

CVE-2024-46188 Fake WordPress Security Alert and WP Takeover

We wanted to give you a heads up about a recent phishing attempt targeting WordPress users. Some of you might have received a deceptive email claiming to be from the WordPress Security Team. This email raises a false alarm about a non-existent vulnerability called “Remote Code Execution (RCE)” on your WordPress website. You might have

CVE-2024-46188 Fake WordPress Security Alert and WP Takeover Read More »

How to restrict s3 readable only from certain IP addresses or CloudFlare Only

In many scenarios, it becomes crucial to control and limit access to your S3 bucket to specific IP addresses. Recently, we encountered a situation where we needed to grant access exclusively to CloudFlare IPs. To address this requirement, we implemented a solution by incorporating conditions into our S3 bucket policy. This approach allows for fine-grained

How to restrict s3 readable only from certain IP addresses or CloudFlare Only Read More »

Failed to create temporary file: /var/lib/mod_security/20xx

Today, the developer reported that the he is not able to upload some files. As we checked, we were getting the following error on mod_security log. It looks like apache is getting denied while writing in to /var/lib/mod_security/ location. As a quick fix, we have modified the mod_security.conf configuration file located at /etc/httpd/conf.d/mod_security.conf Once modified,

Failed to create temporary file: /var/lib/mod_security/20xx Read More »

How to create a new sudo / super admin / wheel user in AlmaLinux CentOS Ubuntu

The “wheel” user has special privileges that allow it to perform administrative tasks on the system. To create a wheel user, follow these steps: That’s it! You’ve successfully created a new wheel user in AlmaLinux 8. To log in to the new account, simply type the username and password you set in step 3 at

How to create a new sudo / super admin / wheel user in AlmaLinux CentOS Ubuntu Read More »

Scroll to Top