🕴 NSF-Funded Research Aims to Help Disrupt Cybercrime Supply Chains 🕴
📖 Read
via "Dark Reading".
The National Science Foundation awarded a grant to Georgia State University (GSU) to come up with innovative ways to thwart the supply chains for counterfeiting, loan- and unemployment fraud.📖 Read
via "Dark Reading".
Dark Reading
NSF-Funded Research Aims to Help Disrupt Cybercrime Supply Chains
The National Science Foundation awarded a grant to Georgia State University (GSU) to come up with innovative ways to thwart the supply chains for counterfeiting
‼ CVE-2020-26221 ‼
📖 Read
via "National Vulnerability Database".
touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting (XSS). The vulnerability allows an attacker to send malicious JavaScript code which could result in hijacking of the user's cookie/session tokens, redirecting the user to a malicious webpage and performing unintended browser action. The issue is patched in version 2.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-1999 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability exists in the Palo Alto Network PAN-OS signature-based threat detection engine that allows an attacker to communicate with devices in the network in a way that is not analyzed for threats by sending data through specifically crafted TCP packets. This technique evades signature-based threat detection. This issue impacts: PAN-OS 8.1 versions earlier than 8.1.17; PAN-OS 9.0 versions earlier than 9.0.11; PAN-OS 9.1 versions earlier than 9.1.5; All versions of PAN-OS 7.1 and PAN-OS 8.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-26220 ‼
📖 Read
via "National Vulnerability Database".
toucbase.ai before version 2.0 leaks information by not stripping exif data from images. Anyone with access to the uploaded image of other users could obtain its geolocation, device, and software version data etc (if present. The issue is fixed in version 2.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-5992 ‼
📖 Read
via "National Vulnerability Database".
NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-2022 ‼
📖 Read
via "National Vulnerability Database".
An information exposure vulnerability exists in Palo Alto Networks Panorama software that discloses the token for the Panorama web interface administrator's session to a managed device when the Panorama administrator performs a context switch into that device. This vulnerability allows an attacker to gain privileged access to the Panorama web interface. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17; PAN-OS 9.0 versions earlier than PAN-OS 9.0.11; PAN-OS 9.1 versions earlier than PAN-OS 9.1.5.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-2048 ‼
📖 Read
via "National Vulnerability Database".
An information exposure through log file vulnerability exists where the password for the configured system proxy server for a PAN-OS appliance may be displayed in cleartext when using the CLI in Palo Alto Networks PAN-OS software. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17; PAN-OS 9.0 versions earlier than PAN-OS 9.0.11; PAN-OS 9.1 versions earlier than PAN-OS 9.1.2.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-2000 ‼
📖 Read
via "National Vulnerability Database".
An OS command injection and memory corruption vulnerability in the PAN-OS management web interface that allows authenticated administrators to disrupt system processes and potentially execute arbitrary code and OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1 versions earlier than PAN-OS 9.1.4; PAN-OS 10.0 versions earlier than PAN-OS 10.0.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-2050 ‼
📖 Read
via "National Vulnerability Database".
An authentication bypass vulnerability exists in the GlobalProtect SSL VPN component of Palo Alto Networks PAN-OS software that allows an attacker to bypass all client certificate checks with an invalid certificate. A remote attacker can successfully authenticate as any user and gain access to restricted VPN network resources when the gateway or portal is configured to rely entirely on certificate-based authentication. Impacted features that use SSL VPN with client certificate verification are: GlobalProtect Gateway, GlobalProtect Portal, GlobalProtect Clientless VPN In configurations where client certificate verification is used in conjunction with other authentication methods, the protections added by the certificate check are ignored as a result of this issue. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17; PAN-OS 9.0 versions earlier than PAN-OS 9.0.11; PAN-OS 9.1 versions earlier than PAN-OS 9.1.5; PAN-OS 10.0 versions earlier than PAN-OS 10.0.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-7770 ‼
📖 Read
via "National Vulnerability Database".
This affects the package json8 before 1.0.3. The function adds in the target object the property specified in the path, however it does not properly check the key being set, leading to a prototype pollution.📖 Read
via "National Vulnerability Database".
🕴 Like the Energizer Bunny, Trickbot Goes On and On 🕴
📖 Read
via "Dark Reading".
Recent efforts to take down the virulent botnet have been largely -- but not entirely -- successful.📖 Read
via "Dark Reading".
Dark Reading
Like the Energizer Bunny, Trickbot Goes On and On
Recent efforts to take down the virulent botnet have been largely -- but not entirely -- successful.
❌ From Triton to Stuxnet: Preparing for OT Incident Response ❌
📖 Read
via "Threat Post".
Lesley Carhart, with Dragos, gives Threatpost a behind-the-scenes look at how industrial companies are faring during the COVID-19 pandemic - and how they can prepare for future threats.📖 Read
via "Threat Post".
Threat Post
From Triton to Stuxnet: Preparing for OT Incident Response
Lesley Carhart, with Dragos, gives Threatpost a behind-the-scenes look at how industrial companies are faring during the COVID-19 pandemic - and how they can prepare for future threats with effective incident response plans.
🦿 New survey details IT challenges, shadow IT risks, 2021 outlook, and more 🦿
📖 Read
via "Tech Republic".
The report also illustrates a shift in the way workers perceive IT. Half of the respondent employees said they "had more empathy, had more respect or were more grateful for IT."📖 Read
via "Tech Republic".
TechRepublic
New survey details IT challenges, shadow IT risks, 2021 outlook, and more
The report also illustrates a shift in the way workers perceive IT. Half of the respondent employees said they "had more empathy, had more respect or were more grateful for IT."
❌ 2 More Google Chrome Zero-Days Under Active Exploitation ❌
📖 Read
via "Threat Post".
Browser users are once again being asked to patch severe vulnerabilities that can lead to remote code execution.📖 Read
via "Threat Post".
Threat Post
2 More Google Chrome Zero-Days Under Active Exploitation
Browser users are once again being asked to patch severe vulnerabilities that can lead to remote code execution.
🦿 How to combat the latest and most aggressive botnets and malware 🦿
📖 Read
via "Tech Republic".
Launching more sophisticated botnets, malware, and other threats, cybercriminals are getting more ruthless, says Nuspire.📖 Read
via "Tech Republic".
TechRepublic
How to combat the latest and most aggressive botnets and malware
Launching more sophisticated botnets, malware, and other threats, cybercriminals are getting more ruthless, says Nuspire.
🕴 5 Steps Every Company Should Take to Avoid Data Theft Risk 🕴
📖 Read
via "Dark Reading".
It's never been easier for employees to download company data and take it with them to their next gig.📖 Read
via "Dark Reading".
Dark Reading
5 Steps Every Company Should Take to Avoid Data Theft Risk
It's never been easier for employees to download company data and take it with them to their next gig.
‼ CVE-2020-9128 ‼
📖 Read
via "National Vulnerability Database".
FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13954 ‼
📖 Read
via "National Vulnerability Database".
By default, Apache CXF creates a /services page containing a listing of the available endpoint names and addresses. This webpage is vulnerable to a reflected Cross-Site Scripting (XSS) attack via the styleSheetPath, which allows a malicious actor to inject javascript into the web page. This vulnerability affects all versions of Apache CXF prior to 3.4.1 and 3.3.8. Please note that this is a separate issue to CVE-2019-17573.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-25658 ‼
📖 Read
via "National Vulnerability Database".
It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to decrypt parts of the cipher text encrypted with RSA.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-25706 ‼
📖 Read
via "National Vulnerability Database".
A cross-site scripting (XSS) vulnerability exists in templates_import.php (Cacti 1.2.13) due to Improper escaping of error message during template import preview in the xml_path field📖 Read
via "National Vulnerability Database".
‼ CVE-2020-27481 ‼
📖 Read
via "National Vulnerability Database".
An unauthenticated SQL Injection vulnerability in Good Layers LMS Plugin <= 2.1.4 exists due to the usage of "wp_ajax_nopriv" call in WordPress, which allows any unauthenticated user to get access to the function "gdlr_lms_cancel_booking" where POST Parameter "id" was sent straight into SQL query without sanitization.📖 Read
via "National Vulnerability Database".