π΄ 5 Key Takeaways from the SolarWinds Breach π΄
π Read
via "Dark Reading".
New details continue to emerge each day, and there may be many more lessons to learn from what could be among the largest cyberattacks ever.π Read
via "Dark Reading".
Dark Reading
Slideshows - Dark Reading
Dark Reading: Connecting The Information Security Community. Explore our slideshows.
β Insider Threats: What Are They, Really? β
π Read
via "Threat Post".
"Insider threat" or "human error" shows up a lot as the major cause of data breaches across all types of reports out there. But often it's not defined, or it's not clearly defined, so people conjure up their own definition.π Read
via "Threat Post".
Threat Post
Insider Threats: What Are They, Really?
An insider threat is not necessarily a malicious actor. Often, companies define an insider threat as someone who inadvertently creates a security problem for a business. Learn more.
β Cyberpunk 2077 Headaches Grow: New Spyware Found in Fake Android Download β
π Read
via "Threat Post".
Threat actors impersonate Google Play store in scam as Sony pulls the game off the PlayStation store due to myriad performance issues.π Read
via "Threat Post".
Threat Post
Cyberpunk 2077 Headaches Grow: New Spyware Found in Fake Android Download
Threat actors impersonate Google Play store in scam as Sony pulls the game off the PlayStation store due to myriad performance issues.
π¦Ώ Cybersecurity can use some help from AI and ML π¦Ώ
π Read
via "Tech Republic".
Howard professor says security must reach all types of networks, including IoT and ad hoc networks.π Read
via "Tech Republic".
TechRepublic
Cybersecurity can use some help from AI and ML
Howard professor says security must reach all types of networks, including IoT and ad hoc networks.
π¦Ώ AI, ML can bolster cybersecurity, and vice versa, professor says π¦Ώ
π Read
via "Tech Republic".
Howard University professor talks about his research in emerging technologies.π Read
via "Tech Republic".
TechRepublic
AI, ML can bolster cybersecurity, and vice versa, professor says
Howard University professor talks about his research in emerging technologies.
β Microsoft Caught Up in SolarWinds Spy Effort, Joining Federal Agencies β
π Read
via "Threat Post".
The ongoing, growing campaign is βeffectively an attack on the United States and its government and other critical institutions,β Microsoft warned.π Read
via "Threat Post".
Threat Post
Microsoft Caught Up in SolarWinds Spy Effort, Joining Federal Agencies
The ongoing, growing campaign is βeffectively an attack on the United States and its government and other critical institutions,β Microsoft warned.
βΌ CVE-2020-4764 βΌ
π Read
via "National Vulnerability Database".
IBM Planning Analytics 2.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 188898.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25494 βΌ
π Read
via "National Vulnerability Database".
Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25901 βΌ
π Read
via "National Vulnerability Database".
Host Header Injection in Spiceworks 7.5.7.0 allowing the attacker to render arbitrary links that point to a malicious website with poisoned Host header webpages.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25495 βΌ
π Read
via "National Vulnerability Database".
A reflected Cross-site scripting (XSS) vulnerability in Xinuo (formerly SCO) Openserver version 5 and 6 allows remote attackers to inject arbitrary web script or HTML tag via the parameter 'section'.π Read
via "National Vulnerability Database".
π¦Ώ SolarWinds-related cyberattacks pose grave risk to government and private sector, says CISA π¦Ώ
π Read
via "Tech Republic".
The attacks have reportedly hit the US Energy Department and the Federal Energy Regulatory Commission as well as other vital agencies and companies around the world.π Read
via "Tech Republic".
TechRepublic
SolarWinds-related cyberattacks pose grave risk to government and private sector, says CISA
The attacks have reportedly hit the US Energy Department and the Federal Energy Regulatory Commission as well as other vital agencies and companies around the world.
π¦Ώ Beware of cybercriminals: Keep your guard up during the last-minute shopping frenzy π¦Ώ
π Read
via "Tech Republic".
TechRepublic spoke with email security firm Tessian's CEO Tim Sadler, who tells us how to avoid being phished or scammed during the search for perfect presents.π Read
via "Tech Republic".
TechRepublic
Beware of cybercriminals: Keep your guard up during the last-minute shopping frenzy
TechRepublic spoke with email security firm Tessian's CEO Tim Sadler, who tells us how to avoid being phished or scammed during the search for perfect presents.
π¦Ώ Predicting 2021 in cybersecurity: DDoS attacks, 5G speed, AI security, and more π¦Ώ
π Read
via "Tech Republic".
Expert pleads with companies to realize they are potential attack victims, no matter their size.π Read
via "Tech Republic".
TechRepublic
Predicting 2021 in cybersecurity: DDoS attacks, 5G speed, AI security, and more
Expert pleads with companies to realize they are potential attack victims, no matter their size.
π¦Ώ Good and bad news for cybersecurity in 2021 π¦Ώ
π Read
via "Tech Republic".
Expert sees improvement in attacks as well as defense technologies. He reminds businesses that all companies are potential targets.π Read
via "Tech Republic".
TechRepublic
Good and bad news for cybersecurity in 2021
Expert sees improvement in attacks as well as defense technologies. He reminds businesses that all companies are potential targets.
β Sunburstβs C2 Secrets Reveal Second-Stage SolarWinds Victims β
π Read
via "Threat Post".
Examining the backdoor's DNS communications led researchers to find a government agency and a big U.S. telco that were flagged for further exploitation in the spy campaign.π Read
via "Threat Post".
Threat Post
Sunburstβs C2 Secrets Reveal Second-Stage SolarWinds Victims
Examining the backdoor's DNS communications led researchers to find a government agency and a big U.S. telco that were flagged for further exploitation in the spy campaign.
βΌ CVE-2020-26251 βΌ
π Read
via "National Vulnerability Database".
Open Zaak is a modern, open-source data- and services-layer to enable zaakgericht werken, a Dutch approach to case management. In Open Zaak before version 1.3.3 the Cross-Origin-Resource-Sharing policy in Open Zaak is currently wide open - every client is allowed. This allows evil.com to run scripts that perform AJAX calls to known Open Zaak installations, and the browser will not block these. This was intended to only apply to development machines running on localhost/127.0.0.1. Open Zaak 1.3.3 disables CORS by default, while it can be opted-in through environment variables. The vulnerability does not actually seem exploitable because: a) The session cookie has a `Same-Site: Lax` policy which prevents it from being sent along in Cross-Origin requests. b) All pages that give access to (production) data are login-protected c) `Access-Control-Allow-Credentials` is set to `false` d) CSRF checks probably block the remote origin, since they're not explicitly added to the trusted allowlist.π Read
via "National Vulnerability Database".
π΄ Microsoft Confirms Its Network Was Breached With Tainted SolarWinds Updates π΄
π Read
via "Dark Reading".
Attack on thousands of other companies as "moment of reckoning" for governments and industry, company president says.π Read
via "Dark Reading".
Dark Reading
Cyberattacks & Data Breaches recent news | Dark Reading
Explore the latest news and expert commentary on Cyberattacks & Data Breaches, brought to you by the editors of Dark Reading
β Cloud is King: 9 Software Security Trends to Watch in 2021 β
π Read
via "Threat Post".
Researchers predict software security will continue to struggle to keep up with cloud and IoT in the new year.π Read
via "Threat Post".
Threat Post
Cloud is King: 9 Software Security Trends to Watch in 2021
Researchers predict software security will continue to struggle to keep up with cloud and IoT in the new year.
βΌ CVE-2020-13514 βΌ
π Read
via "National Vulnerability Database".
A privilege escalation vulnerability exists in the WinRing0x64 Driver Privileged I/O Write IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) can cause increased privileges. Using the IRP 0x9c40a0e0 gives a low privilege user direct access to the OUT instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2020-20298 βΌ
π Read
via "National Vulnerability Database".
Eval injection vulnerability in the parserCommom method in the ParserTemplate class in zzz_template.php in zzzphp 1.7.2 allows remote attackers to execute arbitrary commands.π Read
via "National Vulnerability Database".
βΌ CVE-2020-20276 βΌ
π Read
via "National Vulnerability Database".
An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP server versions 2.10 and earlier can be abused to cause a crash and could potentially lead to remote code execution.π Read
via "National Vulnerability Database".