β Emotet takedown β Europol attacks βworldβs most dangerous malwareβ β
π Read
via "Naked Security".
Great news from Europol - if you've heard of Emotet, you'll have a good idea how badly things often end for its victims.π Read
via "Naked Security".
Naked Security
Emotet takedown β Europol attacks βworldβs most dangerous malwareβ
Great news from Europol β if youβve heard of Emotet, youβll have a good idea how badly things often end for its victims.
π¦Ώ Security chaos engineering helps you find weak links in your cyber defenses before attackers do π¦Ώ
π Read
via "Tech Republic".
Security experts explain why this approach is all about data and resilience, not deliberately sabotaging your own network.π Read
via "Tech Republic".
TechRepublic
Security chaos engineering helps you find weak links in your cyber defenses before attackers do
Security experts explain why this approach is all about data and resilience, not deliberately sabotaging your own network.
π΄ Strengthening Zero-Trust Architecture π΄
π Read
via "Dark Reading".
Organizations that want to stay ahead of cybercriminals will find that going beyond user trust and device trust is critical for outwitting their adversaries.π Read
via "Dark Reading".
Dark Reading
Strengthening Zero-Trust Architecture
Organizations that want to stay ahead of cybercriminals will find that going beyond user trust and device trust is critical for outwitting their adversaries.
βΌ CVE-2020-36109 βΌ
π Read
via "National Vulnerability Database".
ASUS RT-AX86U router firmware below version under 9.0.0.4_386 has a buffer overflow in the blocking_request.cgi function of the httpd module that can cause code execution when an attacker constructs malicious data.π Read
via "National Vulnerability Database".
βΌ CVE-2020-28194 βΌ
π Read
via "National Vulnerability Database".
Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server, which can lead to arbitrary code execution.π Read
via "National Vulnerability Database".
π AIDE 0.17.1 π
π Read
via "Packet Storm Security".
AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determining which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.π Read
via "Packet Storm Security".
Packetstormsecurity
AIDE 0.17.1 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π Wireshark Analyzer 3.4.3 π
π Read
via "Packet Storm Security".
Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.π Read
via "Packet Storm Security".
Packetstormsecurity
Wireshark Analyzer 3.4.3 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π΄ Rapid7 Acquires Alcide, Strengthens Focus on Cloud π΄
π Read
via "Dark Reading".
Its $50 million purchase of Alcide, a Kubernetes security provider, follows its 2020 acquisition of cloud security vendor DivvyCloud.π Read
via "Dark Reading".
Dark Reading
Rapid7 Acquires Alcide, Strengthens Focus on Cloud
Its $50 million purchase of Alcide, a Kubernetes security provider, follows its 2020 acquisition of cloud security vendor DivvyCloud.
β Alleged Gaming Software Supply-Chain Attack Installs Spyware β
π Read
via "Threat Post".
Researchers allege that software used for downloading Android apps onto PCs and Macs has been compromised to install malware onto victim devices.π Read
via "Threat Post".
Threat Post
Alleged Gaming Software Supply-Chain Attack Installs Spyware
Researchers allege that software used for downloading Android apps onto PCs and Macs has been compromised to install malware onto victim devices.
β Critical Libgcrypt Crypto Bug Opens Machines to Arbitrary Code β
π Read
via "Threat Post".
The flaw in the free-source library could have been ported to multiple applications.π Read
via "Threat Post".
Threat Post
Critical Libgcrypt Crypto Bug Opens Machines to Arbitrary Code
The flaw in the free-source library could have been ported to multiple applications.
βΌ CVE-2020-28426 βΌ
π Read
via "National Vulnerability Database".
All versions of package kill-process-on-port are vulnerable to Command Injection via a.getProcessPortId.π Read
via "National Vulnerability Database".
βΌ CVE-2021-21277 βΌ
π Read
via "National Vulnerability Database".
angular-expressions is "angular's nicest part extracted as a standalone module for the browser and node". In angular-expressions before version 1.1.2 there is a vulnerability which allows Remote Code Execution if you call "expressions.compile(userControlledInput)" where "userControlledInput" is text that comes from user input. The security of the package could be bypassed by using a more complex payload, using a ".constructor.constructor" technique. In terms of impact: If running angular-expressions in the browser, an attacker could run any browser script when the application code calls expressions.compile(userControlledInput). If running angular-expressions on the server, an attacker could run any Javascript expression, thus gaining Remote Code Execution. This is fixed in version 1.1.2 of angular-expressions A temporary workaround might be either to disable user-controlled input that will be fed into angular-expressions in your application or allow only following characters in the userControlledInput.π Read
via "National Vulnerability Database".
βΌ CVE-2020-24271 βΌ
π Read
via "National Vulnerability Database".
A CSRF vulnerability was discovered in EasyCMS v1.6 that can add an admin account through index.php?s=/admin/rbacuser/insert/navTabId/rbacuser/callbackType/closeCurrent, then post username=***&password=***.π Read
via "National Vulnerability Database".
βΌ CVE-2021-21286 βΌ
π Read
via "National Vulnerability Database".
AVideo Platform is an open-source Audio and Video platform. It is similar to a self-hosted YouTube. In AVideo Platform before version 10.2 there is an authorization bypass vulnerability which enables an ordinary user to get admin control. This is fixed in version 10.2. All queries now remove the pass hash and the recoverPass hash.π Read
via "National Vulnerability Database".
βΌ CVE-2021-21266 βΌ
π Read
via "National Vulnerability Database".
openHAB is a vendor and technology agnostic open source automation software for your home. In openHAB before versions 2.5.12 and 3.0.1 the XML external entity (XXE) attack allows attackers in the same network as the openHAB instance to retrieve internal information like the content of files from the file system. Responses to SSDP requests can be especially malicious. All add-ons that use SAX or JAXB parsing of externally received XML are potentially subject to this kind of attack. In openHAB, the following add-ons are potentially impacted: AvmFritz, BoseSoundtouch, DenonMarantz, DLinkSmarthome, Enigma2, FmiWeather, FSInternetRadio, Gce, Homematic, HPPrinter, IHC, Insteon, Onkyo, Roku, SamsungTV, Sonos, Roku, Tellstick, TR064, UPnPControl, Vitotronic, Wemo, YamahaReceiver and XPath Tranformation. The vulnerabilities have been fixed in versions 2.5.12 and 3.0.1 by a more strict configuration of the used XML parser.π Read
via "National Vulnerability Database".
βΌ CVE-2021-3282 βΌ
π Read
via "National Vulnerability Database".
HashiCorp Vault Enterprise 1.6.0 & 1.6.1 allowed the `remove-peer` raft operator command to be executed against DR secondaries without authentication. Fixed in 1.6.2.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23330 βΌ
π Read
via "National Vulnerability Database".
All versions of package launchpad are vulnerable to Command Injection via stop.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25594 βΌ
π Read
via "National Vulnerability Database".
HashiCorp Vault and Vault Enterprise allowed for enumeration of Secrets Engine mount paths via unauthenticated HTTP requests. Fixed in 1.6.2 & 1.5.7.π Read
via "National Vulnerability Database".
βΌ CVE-2021-21276 βΌ
π Read
via "National Vulnerability Database".
Polr is an open source URL shortener. in Polr before version 2.3.0, a vulnerability in the setup process allows attackers to gain admin access to site instances, even if they do not possess an existing account. This vulnerability exists regardless of users' settings. If an attacker crafts a request with specific cookie headers to the /setup/finish endpoint, they may be able to obtain admin privileges on the instance. This is caused by a loose comparison (==) in SetupController that is susceptible to attack. The project has been patched to ensure that a strict comparison (===) is used to verify the setup key, and that /setup/finish verifies that no users table exists before performing any migrations or provisioning any new accounts. This is fixed in version 2.3.0. Users can patch this vulnerability without upgrading by adding abort(404) to the very first line of finishSetup in SetupController.php.π Read
via "National Vulnerability Database".
βΌ CVE-2021-3024 βΌ
π Read
via "National Vulnerability Database".
HashiCorp Vault and Vault Enterprise disclosed the internal IP address of the Vault node when responding to some invalid, unauthenticated HTTP requests. Fixed in 1.6.2 & 1.5.7.π Read
via "National Vulnerability Database".
βΌ CVE-2020-13564 βΌ
π Read
via "National Vulnerability Database".
A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a crafted URL to trigger this vulnerability in the phpGACL template acl_id parameter.π Read
via "National Vulnerability Database".