🛡 Cybersecurity & Privacy 🛡 - News

Russian Espionage Group Updates Custom Malware Suite

Turla has outfitted a trio of backdoors with new C2 tricks and increased interop, as seen in an attack on a European government.

171 views17:43

🕴 Rethinking Security for the Next Normal -- Under Pressure 🕴

By making a commitment to a unified approach to security, then doing what's necessary to operationalize it, organizations can establish a better security model for the next normal.

📖 Read

via "Dark Reading".

Rethinking Security for the Next Normal -- Under Pressure

By making a commitment to a unified approach to security, then doing what's necessary to operationalize it, organizations can establish a better security model for the next normal.

151 views18:27

‼ CVE-2020-15278 ‼

Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. This exploit allows Discord users with a high privilege level within the guild to bypass hierarchy checks when the application is in a specific condition that is beyond that user's control. By abusing this exploit, it is possible to perform destructive actions within the guild the user has high privileges in. This exploit has been fixed in version 3.4.1. As a workaround, unloading the Mod module with unload mod or, disabling the massban command with command disable global massban can render this exploit not accessible. We still highly recommend updating to 3.4.1 to completely patch this issue.

📖 Read

via "National Vulnerability Database".

145 views18:32

‼ CVE-2020-4782 ‼

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

📖 Read

via "National Vulnerability Database".

137 views18:32

Insider Threats Poised to Increase in 2021

🔏 Insider Threats Poised to Increase in 2021 🔏

Forrester, citing the persistence of remote work, predicts that internal incidents will be responsible for 33% of breaches in 2021.

📖 Read

via "Digital Guardian".

Digital Guardian

Forrester, citing the persistence of remote work, predicts that internal incidents will be responsible for 33% of breaches in 2021.

137 views18:35

🕴 6 Ways Passwords Fail Basic Security Tests 🕴

New data shows humans still struggle with password creation and management.

📖 Read

via "Dark Reading".

6 Ways Passwords Fail Basic Security Tests

New data shows humans still struggle with password creation and management.

142 views18:57

‼ CVE-2020-16262 ‼

Winston 1.5.4 devices have a local www-data user that is overly permissioned, resulting in root privilege escalation.

📖 Read

via "National Vulnerability Database".

143 views20:32

‼ CVE-2020-26132 ‼

An issue was discovered in Home DNS Server 0.10. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the HomeDNSServer.exe binary.

📖 Read

via "National Vulnerability Database".

148 views20:32

❌ ‘Copyright Violation’ Notices Lead to Facebook 2FA Bypass ❌

Fraudulent Facebook messages allege copyright infringement and threaten to take down pages, unless users enter logins, passwords and 2FA codes.

📖 Read

via "Threat Post".

‘Copyright Violation’ Notices Lead to Facebook 2FA Bypass

Fraudulent Facebook messages allege copyright infringement and threaten to take down pages, unless users enter logins, passwords and 2FA codes.

151 views20:43

🕴 US Government Issues Warning on Kimsuky APT Group 🕴

The joint alert, from CISA, the FBI, and others, describes activities from the North Korean advanced persistent threat group.

📖 Read

via "Dark Reading".

US Government Issues Warning on Kimsuky APT Group

The joint alert, from CISA, the FBI, and others, describes activities from the North Korean advanced persistent threat group.

137 views21:28

Don't wait for a breach before implementing cybersecurity, expert says

🦿 Don't wait for a breach before implementing cybersecurity, expert says 🦿

Professor who specializes in security says we often treat a breach like a home break-in, adding security after the theft. More students are choosing security as a career, she adds.

📖 Read

via "Tech Republic".

TechRepublic

Professor who specializes in security says we often treat a breach like a home break-in, adding security after the theft. More students are choosing security as a career, she adds.

137 views21:28

❌ More Hospitals Hit by Growing Wave of Ransomware Attacks ❌

Hospitals in New York and Oregon were targeted on Tuesday by threat actors who crippled systems and forced ambulances with sick patients to be rerouted, in some cases.

📖 Read

via "Threat Post".

2 More Hospitals Hit by Growing Wave of Ransomware Attacks, As Feds Issue Warning

Hospitals in New York and Oregon were targeted on Tuesday by threat actors who crippled systems and forced ambulances with sick patients to be rerouted, in some cases.

137 views22:13

🕴 Breaking the Glass Ceiling: Tough for Women, Tougher for Women of Color 🕴

Security practitioners shed light on obstacles limiting career growth and the steps businesses can take to achieve their promises of a more diverse workforce.

📖 Read

via "Dark Reading".

Breaking the Glass Ceiling: Tough for Women, Tougher for Women of Color

Security practitioners shed light on obstacles limiting career growth and the steps businesses can take to achieve their promises of a more diverse workforce.

141 views22:28

‼ CVE-2020-24712 ‼

Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the IMAP Host field on the account settings page.

📖 Read

via "National Vulnerability Database".

153 views22:33

‼ CVE-2020-24711 ‼

The Reset button on the Account Settings page in Gophish before 0.11.0 allows attackers to cause a denial of service via a clickjacking attack

📖 Read

via "National Vulnerability Database".

173 views22:33

‼ CVE-2020-24708 ‼

Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the Host field on the send profile form.

📖 Read

via "National Vulnerability Database".

190 views22:33

‼ CVE-2020-27986 ‼

** DISPUTED ** SonarQube 8.4.2.36762 allows remote attackers to discover cleartext SMTP, SVN, and GitLab credentials via the api/settings/values URI. NOTE: reportedly, the vendor's position is "it is the administrator's responsibility to configure it."

📖 Read

via "National Vulnerability Database".

197 views00:33

‼ CVE-2020-11487 ‼

NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to 3.38.30. DGX-2 with BMC firmware versions prior to 1.06.06 and all DGX A100 Servers with all BMC firmware versions, contains a vulnerability in the AMI BMC firmware in which the use of a hard-coded RSA 1024 key with weak ciphers may lead to information disclosure.

📖 Read

via "National Vulnerability Database".

200 views05:33

‼ CVE-2020-11488 ‼

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to verify the firmware signature, which may lead to information disclosure or code execution.

📖 Read

via "National Vulnerability Database".

195 views05:33

❌ Xfinity, McAfee Brands Abused by Parked Domains in Active Campaigns ❌

Malicious redirection websites are using typosquatting and impersonation to attack unwary visitors.

📖 Read

via "Threat Post".

Xfinity, McAfee Brands Abused by Parked Domains in Active Campaigns

Malicious redirection websites are using typosquatting and impersonation to attack unwary visitors.

183 views10:25