Blog - HAZERCLOUD - Page 3 of 21 - Top DevOps, AWS Partner Consultant and CyberSecurity Company in Kerala

Cyber Security – Monthly Exploitation Trend Report – Mar 2025

[Announcement] Amazon RDS for PostgreSQL 12 will reach end of standard support on February 28, 2025. Upgrade your database before March 1, 2025.

If you have received this message from AWS, you need to act quickly to avoid surge in your AWS bill. Attention AWS RDS Users Utilizing PostgreSQL 12: PostgreSQL 12 is nearing its end-of-standard-support lifecycle. The community will deprecate it in November 2024, ceasing all bug fixes and security patches. Amazon RDS standard support for PostgreSQL

[Announcement] Amazon RDS for PostgreSQL 12 will reach end of standard support on February 28, 2025. Upgrade your database before March 1, 2025. Read More »

Cyber Security – Monthly Exploitation Trend Report – Feb 2025

Leave a Comment / Security / Austin Kunjuvareed

Top 10 CVEs 2025 – January-February SL.NO CVE Vulnerability Vendor Service Version CVSS Severity 1 CVE-2025-0316 authentication bypass Chimpstudio WP Directory box Manager 3.1 9.8 CRITICAL 2 CVE-2025-24370 XSS, DoS, and Authentication Bypass Adamghill Django-unicorn 4.0 9.3 CRITICAL 3 CVE-2025-23196 Code Injection Apache Software Foundation Apache Ambari <2.7.9 8.8 HIGH 4 CVE-2025-26768 CSRF to Stored

Cyber Security – Monthly Exploitation Trend Report – Feb 2025 Read More »

Windows Themes zero-day bug exposes users to NTLM credential theft

Leave a Comment / Security / Austin Kunjuvareed

A New Bypass Detected by ACROS Security A new zero-day vulnerability has been exposed recently! The newly discovered zero-day bug on Windows Theme files is exposing people’s NTLM credentials. It is one of the serious risks identified recently by Akamai researcher, Tomer Peled. Researchers at ACROS security have reported that this vulnerability is a serious

Windows Themes zero-day bug exposes users to NTLM credential theft Read More »

[Action Required] Deprecation of Amazon RDS M4, R4, and T2 database instance types on MySQL, MariaDB, and PostgreSQL [AWS Account: ]

Leave a Comment / AWS / Jobin Joseph

You have probably landed here with an email notification received from AWS. You are not alone! Yes, AWS is indeed deprecating the M4, R4, or T2 instance types. So you should migrate your instance to the next available series before May 31, 2024 Upgrade Path If you need any support for this migration, we HAZERCLOUD

[Action Required] Deprecation of Amazon RDS M4, R4, and T2 database instance types on MySQL, MariaDB, and PostgreSQL [AWS Account: ] Read More »

How to Add Expire Headers in WordPress and Enable Leverage Browser Caching

Leave a Comment / WordPress / Jobin Joseph

IssuePagespeed is complaining about Leverage browser caching. EnvironmentWordPress Hosting.Websites running on Apache web server.All shared hosting accounts. SolutionAdd the following content to your .htaccess File.

How to Add Expire Headers in WordPress and Enable Leverage Browser Caching Read More »

CVE-2024-46188 Fake WordPress Security Alert and WP Takeover

Leave a Comment / Security, WordPress / Jobin Joseph

We wanted to give you a heads up about a recent phishing attempt targeting WordPress users. Some of you might have received a deceptive email claiming to be from the WordPress Security Team. This email raises a false alarm about a non-existent vulnerability called “Remote Code Execution (RCE)” on your WordPress website. You might have

CVE-2024-46188 Fake WordPress Security Alert and WP Takeover Read More »

How to restrict s3 readable only from certain IP addresses or CloudFlare Only

Leave a Comment / AWS / Jobin Joseph

In many scenarios, it becomes crucial to control and limit access to your S3 bucket to specific IP addresses. Recently, we encountered a situation where we needed to grant access exclusively to CloudFlare IPs. To address this requirement, we implemented a solution by incorporating conditions into our S3 bucket policy. This approach allows for fine-grained

How to restrict s3 readable only from certain IP addresses or CloudFlare Only Read More »

Failed to create temporary file: /var/lib/mod_security/20xx

Leave a Comment / CentOS, SysAdmin / Jobin Joseph

Today, the developer reported that the he is not able to upload some files. As we checked, we were getting the following error on mod_security log. It looks like apache is getting denied while writing in to /var/lib/mod_security/ location. As a quick fix, we have modified the mod_security.conf configuration file located at /etc/httpd/conf.d/mod_security.conf Once modified,

Failed to create temporary file: /var/lib/mod_security/20xx Read More »

How to verify the AWS ec2 RSA key Fingerprint – SOLVED

Leave a Comment / AWS / Jobin Joseph

Sometimes, the SSH key that you have or shared by another person may not be letting you in. In such cases, we need to compare the fingerprint of the key with the one showing on your AWS console. By running the following commands locally on a terminal, you will be able to see the fingerprint.

How to verify the AWS ec2 RSA key Fingerprint – SOLVED Read More »