βΌ CVE-2020-5132 βΌ
π Read
via "National Vulnerability Database".
SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organizationΓΒ’Γ’β¬ÒβΒ’s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability.π Read
via "National Vulnerability Database".
π΄ Attacker Dwell Time: Ransomware's Most Important Metric π΄
π Read
via "Dark Reading".
How to bolster security defenses by zeroing in on the length of time an interloper remains undetected inside your networkπ Read
via "Dark Reading".
Dark Reading
Attacker Dwell Time: Ransomware's Most Important Metric
How to bolster security defenses by zeroing in on the length of time an interloper remains undetected inside your network.
β Microsoft Exchange Servers Still Open to Actively Exploited Flaw β
π Read
via "Threat Post".
Despite Microsoft issuing patches almost eight months ago, 61 percent of Exchange servers are still vulnerable.π Read
via "Threat Post".
Threat Post
Microsoft Exchange Servers Still Open to Actively Exploited Flaw
Despite Microsoft issuing patches almost eight months ago, 61 percent of Exchange servers are still vulnerable.
βΌ CVE-2020-15731 βΌ
π Read
via "National Vulnerability Database".
An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-crafted malicious file name. This issue affects: Bitdefender Engines versions prior to 7.85448.π Read
via "National Vulnerability Database".
βΌ CVE-2019-17098 βΌ
π Read
via "National Vulnerability Database".
Use of hard-coded cryptographic key vulnerability in August Connect Wi-Fi Bridge App, Connect Firmware allows an attacker to decrypt an intercepted payload containing the Wi-Fi network authentication credentials. This issue affects: August Connect Wi-Fi Bridge App version v10.11.0 and prior versions on Android. August Connect Firmware version 2.2.12 and prior versions.π Read
via "National Vulnerability Database".
π¦Ώ The state of security and the evolving role of CISOs in a pandemic π¦Ώ
π Read
via "Tech Republic".
Cybersecurity leaders discuss business resiliency and identity challenges during a session at VMworld 2020.π Read
via "Tech Republic".
TechRepublic
The state of security and the evolving role of CISOs in a pandemic
Cybersecurity leaders discuss business resiliency and identity challenges during a session at VMworld 2020.
β Facebook Small Business Grants Spark Identity-Theft Scam β
π Read
via "Threat Post".
The cybercrooks spread the COVID-19 relief scam via Telegram and WhatsApp, and ultimately harvest account credentials and even pics of IDs.π Read
via "Threat Post".
Threat Post
Facebook Small Business Grants Spark Identity-Theft Scam
The cybercrooks spread the COVID-19 relief scam via Telegram and WhatsApp, and ultimately harvest account credentials and even pics of IDs.
βΌ CVE-2020-4629 βΌ
π Read
via "National Vulnerability Database".
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local user with specialized access to obtain sensitive information from a detailed technical error message. This information could be used in further attacks against the system. IBM X-Force ID: 185370.π Read
via "National Vulnerability Database".
π¦Ώ Account takeover fraud rates skyrocketed 282% over last year π¦Ώ
π Read
via "Tech Republic".
ATO is the weapon of choice for fraudsters leading up to the holiday shopping season, new data from Sift shows, and consumers place account security burden on businesses.π Read
via "Tech Republic".
TechRepublic
Account takeover fraud rates skyrocketed 282% over last year
ATO is the weapon of choice for fraudsters leading up to the holiday shopping season, new data from Sift shows, and consumers place account security burden on businesses.
π΄ COVID-19 Creates Opening for OT Security Reform π΄
π Read
via "Dark Reading".
Operations technology was once considered low risk, at least until the virus came along and re-arranged the threat landscape.π Read
via "Dark Reading".
Dark Reading
COVID-19 Creates Opening for OT Security Reform
Operations technology was once considered low risk, at least until the virus came along and re-arranged the threat landscape.
π΄ Phishing Attack Targets Microsoft 365 Users With Netflix & Amazon Lures π΄
π Read
via "Dark Reading".
Cyberattacker TA2552 primarily targets Spanish speakers with messages that leverage a narrow range of themes and popular brands.π Read
via "Dark Reading".
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading
βΌ CVE-2020-12506 βΌ
π Read
via "National Vulnerability Database".
Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending specifically constructed requests without authentication This issue affects: WAGO 750-362 version FW03 and prior versions. WAGO 750-363 version FW03 and prior versions. WAGO 750-823 version FW03 and prior versions. WAGO 750-832/xxx-xxx version FW03 and prior versions. WAGO 750-862 version FW03 and prior versions. WAGO 750-891 version FW03 and prior versions. WAGO 750-890/xxx-xxx version FW03 and prior versions.π Read
via "National Vulnerability Database".
βΌ CVE-2020-12505 βΌ
π Read
via "National Vulnerability Database".
Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW07 allows an attacker to change some special parameters without authentication. This issue affects: WAGO 750-852 version FW07 and prior versions. WAGO 750-880/xxx-xxx version FW07 and prior versions. WAGO 750-881 version FW07 and prior versions. WAGO 750-831/xxx-xxx version FW07 and prior versions. WAGO 750-882 version FW07 and prior versions. WAGO 750-885/xxx-xxx version FW07 and prior versions. WAGO 750-889 version FW07 and prior versions.π Read
via "National Vulnerability Database".
π Insider Stole Yacht IP via USB, Company Alleges π
π Read
via "Digital Guardian".
The latest industrial espionage case involves theft at a yacht manufacturer by a now ex-employee.π Read
via "Digital Guardian".
Digital Guardian
Insider Stole Yacht IP via USB, Company Alleges
The latest industrial espionage case involves theft at a yacht manufacturer by a now ex-employee.
β Android Spyware Variant Snoops on WhatsApp, Telegram Messages β
π Read
via "Threat Post".
The Android malware comes from threat group APT-C-23, also known as Two-Tailed Scorpion and Desert Scorpion.π Read
via "Threat Post".
Threat Post
Android Spyware Variant Snoops on WhatsApp, Telegram Messages
The Android malware comes from threat group APT-C-23, also known as Two-Tailed Scorpion and Desert Scorpion.
π΄ A Guide to the NIST Cybersecurity Framework π΄
π Read
via "Dark Reading".
With cybersecurity threats growing exponentially, it has never been more important to put together an efficient cyber-risk management policy, and NIST's framework can help.π Read
via "Dark Reading".
Dark Reading
A Guide to the NIST Cybersecurity Framework
With cybersecurity threats growing exponentially, it has never been more important to put together an efficient cyber-risk management policy, and NIST's framework can help.
βΌ CVE-2019-20921 βΌ
π Read
via "National Vulnerability Database".
bootstrap-select before 1.13.6 allows Cross-Site Scripting (XSS). It does not escape title values in OPTION elements. This may allow attackers to execute arbitrary JavaScript in a victim's browser.π Read
via "National Vulnerability Database".
βΌ CVE-2020-21523 βΌ
π Read
via "National Vulnerability Database".
A Server-Side Freemarker template injection vulnerability in halo CMS v1.1.3 In the Edit Theme File function. The ftl file can be edited. This is the Freemarker template file. This file can cause arbitrary code execution when it is rendered in the background. exp: <#assign test="freemarker.template.utility.Execute"?new()> ${test("touch /tmp/freemarkerPwned")}π Read
via "National Vulnerability Database".
βΌ CVE-2020-21527 βΌ
π Read
via "National Vulnerability Database".
There is an Arbitrary file deletion vulnerability in halo v1.1.3. A backup function in the background allows a user, when deleting their backup files, to delete any files on the system through directory traversal.π Read
via "National Vulnerability Database".
βΌ CVE-2020-21244 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in FrontAccounting 2.4.7. There is a Directory Traversal vulnerability that can empty folder via admin/inst_lang.php.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25763 βΌ
π Read
via "National Vulnerability Database".
Seat Reservation System version 1.0 suffers from an Unauthenticated File Upload Vulnerability allowing Remote Attackers to gain Remote Code Execution (RCE) on the Hosting Webserver via uploading PHP files.π Read
via "National Vulnerability Database".