β Cloud Leak Exposes 320M Dating-Site Records β
π Read
via "Threatpost".
A misconfigured, Mailfire-owned Elasticsearch server impacted 70 dating and e-commerce sites, exposing PII and details such as romantic preferences.π Read
via "Threatpost".
Threat Post
Cloud Leak Exposes 320M Dating-Site Records
A misconfigured, Mailfire-owned Elasticsearch server impacted 70 dating and e-commerce sites, exposing PII and details such as romantic preferences.
π CISA Breaks Down Recent Chinese Nation State Cyber Activity π
π Read
via "Subscriber Blog RSS Feed ".
A new advisory from CISA outlines recent tactics, techniques, and procedures (TTPs) used by Chinese nation state hackers to target US agencies; it also includes ATT&CK Framework TTPs.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
CISA Breaks Down Recent Chinese Nation State Cyber Activity
A new advisory from CISA outlines recent hacking tactics, techniques, and procedures (TTPs) used by Chinese nation state threat actors to target US agencies; it also includes includes ATT&CK Framework TTPs.
ATENTIONβΌ New - CVE-2019-14756
π Read
via "National Vulnerability Database".
An issue was discovered in KaiOS 1.0, 2.5, and 2.5.12.5. The pre-installed Email application is vulnerable to HTML and JavaScript injection attacks. An attacker can send a specially crafted email to the victim that will inject HTML into the email application's UI as soon as the email is opened. At a bare minimum, this allows an attacker to take control over the Email application's UI (e.g., display a malicious prompt to the user asking them to re-enter their email credentials) and also allows an attacker to abuse any of the privileges available to the mobile application.π Read
via "National Vulnerability Database".
π΄ Security Through an Economics Lens: A Guide for CISOs π΄
π Read
via "Dark Reading: ".
An expert in economics and cybersecurity applies opportunity cost and other concepts of the "dismal science" to infosec roles.π Read
via "Dark Reading: ".
Dark Reading
Security Through an Economics Lens: A Guide for CISOs
An expert in economics and cybersecurity applies opportunity cost and other concepts of the dismal science to infosec roles.
π΄ E-Commerce Sites Hit With New Attack on Magento π΄
π Read
via "Dark Reading: ".
The campaign targeted sites running Magento Version 1, a version of the e-commerce software that is past end-of-life.π Read
via "Dark Reading: ".
Dark Reading
E-Commerce Sites Hit With New Attack on Magento
The campaign targeted sites running Magento Version 1, a version of the e-commerce software that is past end-of-life.
β Feds Warn Nation-State Hackers are Actively Exploiting Unpatched Microsoft Exchange, F5, VPN Bugs β
π Read
via "Threatpost".
Monday's CISA advisory is a staunch reminder for federal government and private sector entities to apply patches for flaws in F5 BIG-IP devices, Citrix VPNs, Pulse Secure VPNs and Microsoft Exchange servers.π Read
via "Threatpost".
Threat Post
Feds Warn Nation-State Hackers are Actively Exploiting Unpatched Microsoft Exchange, F5, VPN Bugs
Monday's CISA advisory is a staunch reminder for federal government and private sector entities to apply patches for flaws in F5 BIG-IP devices, Citrix VPNs, Pulse Secure VPNs and Microsoft Exchange servers.
π΄ Large Cloud Providers Much Less Likely Than Enterprises to Get Breached π΄
π Read
via "Dark Reading: ".
Pen-test results also show a majority of organizations have few protections against attackers already on the network.π Read
via "Dark Reading: ".
Dark Reading
Large Cloud Providers Much Less Likely Than Enterprises to Get Breached
Pen-test results also show a majority of organizations have few protections against attackers already on the network.
π΄ Researchers, Companies Slam Mobile Voting Firm Voatz for 'Bad Faith' Attacks π΄
π Read
via "Dark Reading: ".
In a letter, almost 70 different security firms and individual researchers criticize Voatz for misrepresenting to the US Supreme Court widely accepted security research practices.π Read
via "Dark Reading: ".
Dark Reading
Researchers, Companies Slam Mobile Voting Firm Voatz for 'Bad Faith' Attacks
In a letter, almost 70 different security firms and individual researchers criticize Voatz for misrepresenting to the US Supreme Court widely accepted security research practices.
ATENTIONβΌ New - CVE-2019-14761
π Read
via "National Vulnerability Database".
An issue was discovered in KaiOS 2.5. The pre-installed Note application is vulnerable to HTML and JavaScript injection attacks. A local attacker can inject arbitrary HTML into the Note application. At a bare minimum, this allows an attacker to take control over the Note application's UI (e.g., display a malicious prompt to the user asking them to re-enter credentials such as their KaiOS credentials to continue using the application) and also allows an attacker to abuse any of the privileges available to the mobile application.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-14760
π Read
via "National Vulnerability Database".
An issue was discovered in KaiOS 2.5. The pre-installed Recorder application is vulnerable to HTML and JavaScript injection attacks. A local attacker can inject arbitrary HTML into the Recorder application. At a bare minimum, this allows an attacker to take control over the Recorder application's UI (e.g., display a malicious prompt to the user asking them to re-enter credentials such as their KaiOS credentials to continue using the application) and also allows an attacker to abuse any of the privileges available to the mobile application.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-14759
π Read
via "National Vulnerability Database".
An issue was discovered in KaiOS 1.0, 2.5, and 2.5.1. The pre-installed Radio application is vulnerable to HTML and JavaScript injection attacks. A local attacker can inject arbitrary HTML into the Radio application. At a bare minimum, this allows an attacker to take control over the Radio application's UI (e.g., display a malicious prompt to the user asking them to re-enter credentials such as their KaiOS credentials to continue using the application) and also allows an attacker to abuse any of the privileges available to the mobile application.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-14758
π Read
via "National Vulnerability Database".
An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed File Manager application is vulnerable to HTML and JavaScript injection attacks. An attacker can send a file via email to the victim that will inject HTML into the File Manager application (assuming the victim chooses to download the email attachment). At a bare minimum, this allows an attacker to take control over the File Manager application's UI (e.g., display a malicious prompt to the user asking them to re-enter credentials such as their KaiOS credentials to continue using the application) and also allows an attacker to abuse any of the privileges available to the mobile application.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-14757
π Read
via "National Vulnerability Database".
An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed Contacts application is vulnerable to HTML and JavaScript injection attacks. An attacker can send a vCard file to the victim that will inject HTML into the Contacts application (assuming the victim chooses to import the file). At a bare minimum, this allows an attacker to take control over the Contacts application's UI (e.g., display a malicious prompt to the user asking them to re-enter credentials such as their KaiOS credentials to continue using the application) and also allows an attacker to abuse any of the privileges available to the mobile application.π Read
via "National Vulnerability Database".
β MFA Bypass Bugs Opened Microsoft 365 to Attack β
π Read
via "Threatpost".
Vulnerabilities βthat have existed for yearsβ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio.π Read
via "Threatpost".
Threat Post
MFA Bypass Bugs Opened Microsoft 365 to Attack
Vulnerabilities βthat have existed for yearsβ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio.
π΄ A Real-World Tool for Organizing, Integrating Your Other Tools π΄
π Read
via "Dark Reading: ".
π Read
via "Dark Reading: ".
Dark Reading
A Real-World Tool for Organizing, Integrating Your Other Tools
Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.
π΄ Simplify Your Privacy Approach to Overcome CCPA Challenges π΄
π Read
via "Dark Reading: ".
By building a privacy-forward culture from the ground up and automating processes, organizations can simplify their approach to privacy and be prepared for any upcoming regulations.π Read
via "Dark Reading: ".
Dark Reading
Simplify Your Privacy Approach to Overcome CCPA Challenges
By building a privacy-forward culture from the ground up and automating processes, organizations can simplify their approach to privacy and be prepared for any upcoming regulations.
π Ransomware attacks continue to dominate the threat landscape π
π Read
via "Security on TechRepublic".
Cybercriminals are increasingly exploiting the Cobalt Strike testing toolkit to carry out ransomware campaigns, says Cisco Talos Incident Response.π Read
via "Security on TechRepublic".
TechRepublic
Ransomware attacks continue to dominate the threat landscape
Cybercriminals are increasingly exploiting the Cobalt Strike testing toolkit to carry out ransomware campaigns, says Cisco Talos Incident Response.
π How to protect your organization from DDoS attacks π
π Read
via "Security on TechRepublic".
Without early threat detection, you may not know your website has been hit by a DDoS attack until it slows down or stops, says NordVPN Teams.π Read
via "Security on TechRepublic".
TechRepublic
NordVPN Teams: How to protect your organization from DDoS attacks
Without early threat detection, you may not know your website has been hit by a DDoS attack until it slows down or stops, says NordVPN Teams.
π CISOs are struggling to prepare for security compliance audits π
π Read
via "Security on TechRepublic".
CISOs are turning to automation to address concerns about doing more with less, preparing for audits remotely, and speeding evidence collection, according to a newly released study.π Read
via "Security on TechRepublic".
TechRepublic
CISOs are struggling to prepare for security compliance audits
CISOs are turning to automation to address concerns about doing more with less, preparing for audits remotely, and speeding evidence collection, according to a newly released study.
β Windows Exploit Released For Microsoft βZerologonβ Flaw β
π Read
via "Threatpost".
Security researchers and U.S. government authorities alike are urging admins to address Microsoft's critical privilege escalation flaw.π Read
via "Threatpost".
Threat Post
Windows Exploit Released For Microsoft βZerologonβ Flaw
Security researchers and U.S. government authorities alike are urging admins to address Microsoft's critical privilege escalation flaw.
π Top 5 things to know about zero trust ops π
π Read
via "Security on TechRepublic".
Checking users, applications, and devices on your network are just a few ways to keep your company safe from cyberattacks. Tom Merritt lists five things to know about zero trust ops.π Read
via "Security on TechRepublic".
TechRepublic
Top 5 things to know about zero trust ops
Checking users, applications, and devices on your network are just a few ways to keep your company safe from cyberattacks. Tom Merritt lists five things to know about zero trust ops.