⚠ Patch now! Critical flaw found in OpenWrt router software ⚠
📖 Read
via "Naked Security".
OpenWrt is an open source operating system used by millions of home and small business routers and embedded devices.📖 Read
via "Naked Security".
Naked Security
Patch now! Critical flaw found in OpenWrt router software
OpenWrt is an open source operating system used by millions of home and small business routers and embedded devices.
🛠 OpenSSL Toolkit 1.1.1f 🛠
📖 Go!
via "Security Tool Files ≈ Packet Storm".
OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.📖 Go!
via "Security Tool Files ≈ Packet Storm".
Packetstormsecurity
OpenSSL Toolkit 1.1.1f ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
🕴 Does the 2020 Online Census Account for Security Risk? 🕴
📖 Read
via "Dark Reading: ".
Experts discuss the security issues surrounding a census conducted online and explain how COVID-19 could exacerbate the risk.📖 Read
via "Dark Reading: ".
Dark Reading
Does the 2020 Online Census Account for Security Risk?
Experts discuss the security issues surrounding a census conducted online and explain how COVID-19 could exacerbate the risk.
🕴 Palo Alto Networks to Buy CloudGenix for $420M 🕴
📖 Read
via "Dark Reading: ".
Palo Alto Networks plans to integrate CloudGenix's SD-WAN technology into its Prisma SASE platform following the deal.📖 Read
via "Dark Reading: ".
Dark Reading
Palo Alto Networks to Buy CloudGenix for $420M
Palo Alto Networks plans to integrate CloudGenix's SD-WAN technology into its Prisma SASE platform following the deal.
⚠ Marriott International confirms data breach of up to 5.2 million guests ⚠
📖 Read
via "Naked Security".
Marriott International has today announced that it has suffered a data breach affecting up to 5.2 million people.📖 Read
via "Naked Security".
Naked Security
Marriott International confirms data breach of up to 5.2 million guests
Marriott International has today announced that it has suffered a data breach affecting up to 5.2 million people.
ATENTION‼ New - CVE-2019-2391
📖 Read
via "National Vulnerability Database".
Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data disclosure.📖 Read
via "National Vulnerability Database".
🔐 Phishing emails claim recipient has been infected with coronavirus 🔐
📖 Read
via "Security on TechRepublic".
A new phishing campaign is using the fear of being infected as a way to spread malware, as spotted by security trainer KnowBe4.📖 Read
via "Security on TechRepublic".
TechRepublic
Phishing emails claim recipient has been infected with coronavirus
A new phishing campaign is using the fear of being infected as a way to spread malware, as spotted by security trainer KnowBe4.
🔐 IBM providing 9 free public cloud business services to customers during coronavirus pandemic 🔐
📖 Read
via "Security on TechRepublic".
With companies sending employees home to work during the COVID-19 threat, IBM offers a range of tools to support critical IT applications.📖 Read
via "Security on TechRepublic".
TechRepublic
IBM providing 9 free public cloud business services to customers during coronavirus pandemic
With companies sending employees home to work during the COVID-19 threat, IBM offers a range of tools to support critical IT applications.
🔐 How to better secure your Microsoft Remote Desktop Protocol connections 🔐
📖 Read
via "Security on TechRepublic".
Microsoft's Remote Desktop Protocol has been saddled with security bugs and weaknesses, which means you need to take certain precautions when using RDP for remote connections.📖 Read
via "Security on TechRepublic".
TechRepublic
How to better secure your Microsoft Remote Desktop Protocol connections
Microsoft's Remote Desktop Protocol has been saddled with security bugs and weaknesses, which means you need to take certain precautions when using RDP for remote connections.
❌ 8-Year-Old VelvetSweatshop Bug Resurrected in LimeRAT Campaign ❌
📖 Read
via "Threatpost".
An old RAT learns an old trick.📖 Read
via "Threatpost".
Threat Post
8-Year-Old VelvetSweatshop Bug Resurrected in LimeRAT Campaign
An old RAT learns an old trick.
❌ Zoom Scrutinized As Security Woes Mount ❌
📖 Read
via "Threatpost".
The New York Attorney General has inquired about Zoom's data security strategy, as the conferencing platform comes under heavy scrutiny for its privacy policies.📖 Read
via "Threatpost".
Threat Post
Zoom Scrutinized As Security Woes Mount
The New York Attorney General has inquired about Zoom's data security strategy, as the conferencing platform comes under heavy scrutiny for its privacy policies.
🕴 Patching Poses Security Problems with Move to More Remote Work 🕴
📖 Read
via "Dark Reading: ".
Security teams were not ready for the wholesale move to remote work and the sudden expansion of the attack surface area, experts say.📖 Read
via "Dark Reading: ".
Dark Reading
Patching Poses Security Problems with Move to More Remote Work
Security teams were not ready for the wholesale move to remote work and the sudden expansion of the attack surface area, experts say.
🔐 Keep these privacy considerations in mind when using Zoom at home for work collaboration 🔐
📖 Read
via "Security on TechRepublic".
The platform allows a host to monitor users' activities while screen sharing, as well as access to a participant's device information and other details.📖 Read
via "Security on TechRepublic".
TechRepublic
Keep these privacy considerations in mind when using Zoom at home for work collaboration
The platform allows a host to monitor users' activities while screen sharing, as well as access to a participant's device information and other details.
🕴 Why Third-Party Risk Management Has Never Been More Important 🕴
📖 Read
via "Dark Reading: ".
Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.📖 Read
via "Dark Reading: ".
Darkreading
Why Third-Party Risk Management Has Never Been More Important
Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.
🕴 Latest Security News & Commentary about COVID-19 🕴
📖 Read
via "Dark Reading: ".
Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.📖 Read
via "Dark Reading: ".
Dark Reading
Latest Security News & Commentary about COVID-19
Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.
🕴 Data from 5.2M Marriott Loyalty Program Members Hit by Breach 🕴
📖 Read
via "Dark Reading: ".
The data was breached through the credentials of two franchisee employees.📖 Read
via "Dark Reading: ".
Darkreading
Data from 5.2M Marriott Loyalty Program Members Hit by Breach
The data was breached through the credentials of two franchisee employees.
ATENTION‼ New - CVE-2019-14905
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxos_file_copy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename parameter to perform OS command injections. This could result in a loss of confidentiality of the system among other issues.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-14880
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-10180
📖 Read
via "National Vulnerability Database".
A vulnerability was found in all pki-core 10.x.x version, where the Token Processing Service (TPS) did not properly sanitize several parameters stored for the tokens, possibly resulting in a Stored Cross Site Scripting (XSS) vulnerability. An attacker able to modify the parameters of any token could use this flaw to trick an authenticated user into executing arbitrary JavaScript code.📖 Read
via "National Vulnerability Database".
🕴 Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack 🕴
📖 Read
via "Dark Reading: ".
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.📖 Read
via "Dark Reading: ".
Darkreading
Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.
🔐 Two Exabeam employees at RSA conference who tested positive for COVID-19 are recovering 🔐
📖 Read
via "Security on TechRepublic".
Exabeam's employees are recovering from coronavirus. Both tested positive for coronavirus after attending RSA in San Francisco.📖 Read
via "Security on TechRepublic".
TechRepublic
Two Exabeam employees at RSA conference who tested positive for COVID-19 are recovering
Exabeam's employees are recovering from coronavirus. Both tested positive for COVID-19 after attending RSA in San Francisco.