π Mandos Encrypted File System Unattended Reboot Utility 1.8.13 π
π Read
via "Packet Storm Security".
The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.π Read
via "Packet Storm Security".
Packetstormsecurity
Mandos Encrypted File System Unattended Reboot Utility 1.8.13 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π΄ Ivanti Acquires MobileIron & Pulse Secure π΄
π Read
via "Dark Reading".
The company plans to use these acquisitions to strengthen and secure IT connections across remote devices and infrastructure.π Read
via "Dark Reading".
Dark Reading
Ivanti Acquires MobileIron & Pulse Secure
The company plans to use these acquisitions to strengthen and secure IT connections across remote devices and infrastructure.
β Zoom Impersonation Attacks Aim to Steal Credentials β
π Read
via "Threat Post".
The Better Business Bureau warns of phishing messages with the Zoom logo that tell recipients they have a missed meeting or suspended account.π Read
via "Threat Post".
Threat Post
Zoom Impersonation Attacks Aim to Steal Credentials
The Better Business Bureau warns of phishing messages with the Zoom logo that tell recipients they have a missed meeting or suspended account.
β Electronic Medical Records Cracked Open by OpenClinic Bugs β
π Read
via "Threat Post".
Four security vulnerabilities in an open-source medical records management platform allow remote code execution, patient data theft and more.π Read
via "Threat Post".
Threat Post
Electronic Medical Records Cracked Open by OpenClinic Bugs
Four security vulnerabilities in an open-source medical records management platform allow remote code execution, patient data theft and more.
βΌ CVE-2020-7548 βΌ
π Read
via "National Vulnerability Database".
A CWE-330 - Use of Insufficiently Random Values vulnerability exists in Smartlink, PowerTag, and Wiser Series Gateways (see security notification for version information) that could allow unauthorized users to login.π Read
via "National Vulnerability Database".
βΌ CVE-2020-28971 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie, because of insufficient validation of URI paths.π Read
via "National Vulnerability Database".
βΌ CVE-2020-28970 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie. (In addition, an upload endpoint could then be used by an authenticated administrator to upload executable PHP scripts.)π Read
via "National Vulnerability Database".
βΌ CVE-2020-28993 βΌ
π Read
via "National Vulnerability Database".
A Directory Traversal vulnerability exists in ATX miniCMTS200a Broadband Gateway through 2.0 and Pico CMTS through 2.0. Successful exploitation of this vulnerability would allow an unauthenticated attacker to retrieve administrator credentials by sending a malicious POST request.π Read
via "National Vulnerability Database".
βΌ CVE-2020-28940 βΌ
π Read
via "National Vulnerability Database".
On Western Digital My Cloud OS 5 devices before 5.06.115, the NAS Admin dashboard has an authentication bypass vulnerability that could allow an unauthenticated user to execute privileged commands on the device.π Read
via "National Vulnerability Database".
βΌ CVE-2020-26762 βΌ
π Read
via "National Vulnerability Database".
A stack-based buffer-overflow exists in Edimax IP-Camera IC-3116W (v3.06) and IC-3140W (v3.07), which allows an unauthenticated, unauthorized attacker to perform remote-code-execution due to a crafted GET-Request. The overflow occurs in binary ipcam_cgi due to a missing type check in function doGetSysteminfo(). This has been fixed in version: IC-3116W v3.08.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25181 βΌ
π Read
via "National Vulnerability Database".
WECON PLC Editor Versions 1.3.8 and prior has a heap-based buffer overflow vulnerabilities have been identified that may allow arbitrary code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7545 βΌ
π Read
via "National Vulnerability Database".
A CWE-284:Improper Access Control vulnerability exists in EcoStruxureΓΒͺ and SmartStruxureΓΒͺ Power Monitoring and SCADA Software (see security notification for version information) that could allow for arbitrary code execution on the server when an authorized user access an affected webpage.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7546 βΌ
π Read
via "National Vulnerability Database".
A CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability exists in EcoStruxureΓΒͺ and SmartStruxureΓΒͺ Power Monitoring and SCADA Software (see security notification for version information) that could allow an attacker to perform actions on behalf of the authorized user when accessing an affected webpage.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25177 βΌ
π Read
via "National Vulnerability Database".
WECON PLC Editor Versions 1.3.8 and prior has a stack-based buffer overflow vulnerability has been identified that may allow arbitrary code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7533 βΌ
π Read
via "National Vulnerability Database".
A CWE-255: Credentials Management vulnerability exists in Web Server on Modicon M340, Modicon Quantum and ModiconPremium Legacy offers and their Communication Modules (see security notification for version information) which could cause the execution of commands on the webserver without authentication when sending specially crafted HTTP requests.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7547 βΌ
π Read
via "National Vulnerability Database".
A CWE-284: Improper Access Control vulnerability exists in EcoStruxureΓΒͺ and SmartStruxureΓΒͺ Power Monitoring and SCADA Software (see security notification for version information) that could allow a user the ability to perform actions via the web interface at a higher privilege level.π Read
via "National Vulnerability Database".
βΌ CVE-2020-6880 βΌ
π Read
via "National Vulnerability Database".
A ZXELINK wireless controller has a SQL injection vulnerability. A remote attacker does not need to log in. By sending malicious SQL statements, because the device does not properly filter parameters, successful use can obtain management rights. This affects: ZXV10 W908 all versions before MIPS_A_1022IPV6R3T6P7Y20.π Read
via "National Vulnerability Database".
π΄ Call Fraud Operator Ordered to Pay $9M to Victims π΄
π Read
via "Dark Reading".
Indian national will serve 20 years in prison for running a large call center fraud operation.π Read
via "Dark Reading".
Dark Reading
Call Fraud Operator Ordered to Pay $9M to Victims
Indian national will serve 20 years in prison for running a large call center fraud operation.
π΄ The Cybersecurity Skills Gap: It Doesn't Have to Be This Way π΄
π Read
via "Dark Reading".
Once it becomes clear that off-the-shelf experts aren't realistic at scale, cultivating entry-level talent emerges as the only long-term solution -- not just for a hiring organization but for the field as a whole.π Read
via "Dark Reading".
Dark Reading
The Cybersecurity Skills Gap: It Doesn't Have to Be This Way
Once it becomes clear that off-the-shelf experts aren't realistic at scale, cultivating entry-level talent emerges as the only long-term solution -- not just for a hiring organization but for the field as a whole.
π FBI Warns of BEC Scammers Using Email Forwarding π
π Read
via "Digital Guardian".
The FBI says scammers are increasingly abusing forwarding rules on web-based email clients to hide their activity, opening the door for a Business Email Compromise (BEC) attack.π Read
via "Digital Guardian".
Digital Guardian
FBI Warns of BEC Scammers Using Email Forwarding
The FBI says scammers are increasingly abusing forwarding rules on web-based email clients to hide their activity, opening the door for a Business Email Compromise (BEC) attack.
βΌ CVE-2020-29315 βΌ
π Read
via "National Vulnerability Database".
ThinkAdmin version v1 v6 has a stored XSS vulnerability which allows remote attackers to inject an arbitrary web script or HTML.π Read
via "National Vulnerability Database".