🦿 Why traditional malware detection can't stop the latest security threats 🦿
📖 Read
via "Tech Republic".
Isolating your hardware and your applications is a more effective way to prevent malware from infecting your critical endpoints, says HP.📖 Read
via "Tech Republic".
TechRepublic
Why traditional malware detection can't stop the latest security threats
Isolating your hardware and your applications is a more effective way to prevent malware from infecting your critical endpoints, says HP.
‼ CVE-2020-4890 ‼
📖 Read
via "National Vulnerability Database".
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user with a valid role to the REST API to cause a denial of service due to weak or absense of rate limiting. IBM X-Force ID: 190973.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-4891 ‼
📖 Read
via "National Vulnerability Database".
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 uses an inadequate account lockout setting that could allow a local user er to brute force Rest API account credentials. IBM X-Force ID: 190974.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-24263 ‼
📖 Read
via "National Vulnerability Database".
Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code execution. A non-admin user is allowed to spawn new containers with critical capabilities such as SYS_MODULE, which can be used to take over the Docker host.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-28543 ‼
📖 Read
via "National Vulnerability Database".
Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, an assertion failure or NULL pointer dereference can be triggered in Varnish Cache through the varnish-modules header.append() and header.copy() functions. For some Varnish Configuration Language (VCL) files, this gives remote clients an opportunity to cause a Varnish Cache restart. A restart reduces overall availability and performance due to an increased number of cache misses, and may cause higher load on backend servers.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-24264 ‼
📖 Read
via "National Vulnerability Database".
Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mount. Once such a container is spawned, it can be leveraged to break out of the container leading to complete Docker host machine takeover.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21193 ‼
📖 Read
via "National Vulnerability Database".
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21192 ‼
📖 Read
via "National Vulnerability Database".
Heap buffer overflow in tab groups in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21191 ‼
📖 Read
via "National Vulnerability Database".
Use after free in WebRTC in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-4851 ‼
📖 Read
via "National Vulnerability Database".
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user to poison log files which could impact support and development efforts. IBM X-Force ID: 190450.📖 Read
via "National Vulnerability Database".
🕴 Software Development Security Firm Argon Announces Launch 🕴
📖 Read
via "Dark Reading".
Check Point founder Shlomo Kramer is one of the firm's investors.📖 Read
via "Dark Reading".
Dark Reading
Software Development Security Firm Argon Announces Launch
Check Point founder Shlomo Kramer is one of the firm's investors.
🦿 99.2% of US government Android users are running outdated OS versions 🦿
📖 Read
via "Tech Republic".
Some versions of Android in use by government employees go all the way back to 2017's Android 8, and that's a huge cybersecurity problem.📖 Read
via "Tech Republic".
TechRepublic
99.2% of US government Android users are running outdated OS versions
Some versions of Android in use by government employees go all the way back to 2017's Android 8, and that's a huge cybersecurity problem.
❌ Exchange Cyberattacks Escalate as Microsoft Rolls One-Click Fix ❌
📖 Read
via "Threat Post".
Public proof-of-concept (PoC) exploits for ProxyLogon could be fanning a feeding frenzy of attacks even as patching makes progress.📖 Read
via "Threat Post".
Threat Post
Exchange Cyberattacks Escalate as Microsoft Rolls One-Click Fix
Public proof-of-concept (PoC) exploits for ProxyLogon could be fanning a feeding frenzy of attacks even as patching makes progress.
❌ Magecart Attackers Save Stolen Credit-Card Data in .JPG File ❌
📖 Read
via "Threat Post".
Researchers from Sucuri discovered the tactic, which creatively hides malicious activity until the info can be retrieved, during an investigation into a compromised Magento 2 e-commerce site.📖 Read
via "Threat Post".
Threat Post
Magecart Attackers Save Stolen Credit-Card Data in .JPG File
Researchers from Sucuri discovered the tactic, which creatively hides malicious activity until the info can be retrieved, during an investigation into a compromised Magento 2 e-commerce site.
❌ Latest Mirai Variant Targets SonicWall, D-Link and IoT Devices ❌
📖 Read
via "Threat Post".
A new Mirai variant is targeting known flaws in D-Link, Netgear and SonicWall devices, as well as newly-discovered flaws in unknown IoT devices.📖 Read
via "Threat Post".
Threat Post
Latest Mirai Variant Targets SonicWall, D-Link and IoT Devices
A new Mirai variant is targeting known flaws in D-Link, Netgear and SonicWall devices, as well as newly-discovered flaws in unknown IoT devices.
🕴 Best Practices for Securing Service Accounts 🕴
📖 Read
via "Dark Reading".
While service accounts solve many of the challenges presented by automation, they can also create serious problems when it comes to cybersecurity.📖 Read
via "Dark Reading".
Dark Reading
Best Practices for Securing Service Accounts
While service accounts solve many of the challenges presented by automation, they can also create serious problems when it comes to cybersecurity.
🕴 Microsoft Releases Mitigation Tool for On-Premises Exchange Servers 🕴
📖 Read
via "Dark Reading".
The tool, developed for organizations without dedicated IT and security teams, is meant to be used as temporary mitigation.📖 Read
via "Dark Reading".
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading
🦿 Mamma Mia! Compromised passwords are filled with popular music artists 🦿
📖 Read
via "Tech Republic".
All apologies, but if you use your favorite band as part of your password it's time to turn around and try something else.📖 Read
via "Tech Republic".
TechRepublic
Mamma Mia! Compromised passwords are filled with popular music artists
All apologies, but if you use your favorite band as part of your password it's time to turn around and try something else.
🦿 McAfee uncovers espionage campaign aimed at major telecommunication companies 🦿
📖 Read
via "Tech Republic".
The security company said the attacks were attributed to RedDelta and Mustang Panda, both of which are allegedly based in China.📖 Read
via "Tech Republic".
TechRepublic
McAfee uncovers espionage campaign aimed at major telecommunication companies
The security company said the attacks were attributed to RedDelta and Mustang Panda, both of which are allegedly based in China.
‼ CVE-2020-28899 ‼
📖 Read
via "National Vulnerability Database".
The Web CGI Script on ZyXEL LTE4506-M606 V1.00(ABDO.2)C0 devices does not require authentication, which allows remote unauthenticated attackers (via crafted JSON action data to /cgi-bin/gui.cgi) to use all features provided by the router. Examples: change the router password, retrieve the Wi-Fi passphrase, send an SMS message, or modify the IP forwarding to access the internal network.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-22887 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the BIOS of Pulse Secure (PSA-Series Hardware) models PSA5000 and PSA7000 could allow an attacker to compromise BIOS firmware. This vulnerability can be exploited only as part of an attack chain. Before an attacker can compromise the BIOS, they must exploit the device.📖 Read
via "National Vulnerability Database".