π΄ Microsoft Tracks Attack Campaign Against Customer Support Agents π΄
π Read
via "Dark Reading".
The company attributes the attack to Nobelium, the same group it linked to the SolarWinds campaign earlier this year.π Read
via "Dark Reading".
βΌ CVE-2020-22607 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting vulnerabilty in LimeSurvey 4.1.11+200316 via the (1) name and (2) description parameters in application/controllers/admin/PermissiontemplatesController.php.π Read
via "National Vulnerability Database".
βΌ CVE-2020-22609 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php.π Read
via "National Vulnerability Database".
π΄ New House Bill Aims to Drive Americans' Security Awareness π΄
π Read
via "Dark Reading".
The legislation requires the National Telecommunications and Information Administration to establish a cybersecurity literacy campaign.π Read
via "Dark Reading".
β NVIDIA Patches High-Severity GeForce Spoof-Attack Bug β
π Read
via "Threat Post".
A vulnerability in NVIDIAβs GeForce Experience software opens the door to remote data access, manipulation and deletion.π Read
via "Threat Post".
Threat Post
NVIDIA Patches High-Severity GeForce Spoof-Attack Bug
Vulnerability in NVIDIAβs GeForce Experience software opens door to remote data access, manipulation and deletion.
π Data Protection Act of 2021 Would Create US Data Protection Agency π
π Read
via "".
The proposed legislation would create an agency to enforce data protection rules and oversee high-risk data practices.π Read
via "".
Digital Guardian
Data Protection Act of 2021 Would Create US Data Protection Agency
The proposed legislation would create an agency to enforce data protection rules and oversee high-risk data practices.
β 5G Security Vulnerabilities Fluster Mobile Operators β
π Read
via "Threat Post".
A survey from GSMA and Trend Micro shows a concerning lack of security capabilities for private 5G networks (think factories, smart cities, industrial IoT, utilities and more).π Read
via "Threat Post".
Threat Post
5G Security Vulnerabilities Fluster Mobile Operators
A survey from GSMA and Trend Micro shows a concerning lack of security capabilities for private 5G networks (think factories, smart cities, industrial IoT, utilities and more).
π΄ Attacks Erase Western Digital Network-Attached Storage Drives π΄
π Read
via "Dark Reading".
The company suspects a remote code execution vulnerability affecting My Book Live and My Book Live Duo devices and recommends that business and individual users turn off the drives to protect their data.π Read
via "Dark Reading".
Dark Reading
Attacks Erase Western Digital Network-Attached Storage Drives
The company suspects a remote code execution vulnerability affecting My Book Live and My Book Live Duo devices and recommends that business and individual users turn off the drives to protect their data.
βΌ CVE-2020-21142 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) vulnerabilty in IPFire 2.23 via the IPfire web UI in the mail.cgi.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35298 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via multiple models that contain a 'note' field to store additional information.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35302 βΌ
π Read
via "National Vulnerability Database".
Incorrect Access Control for linked Tickets in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32722 βΌ
π Read
via "National Vulnerability Database".
GlobalNewFiles is a mediawiki extension. All existing versions of GlobalNewFiles are affected by an uncontrolled resource consumption vulnerability. A large amount of page moves within a short space of time could overwhelm Database servers due to improper handling of load balancing and a lack of an appropriate index. No patches are currently available. As a workaround, one may avoid use of the extension unless additional rate limit at the MediaWiki level or via PoolCounter / MySQL is enabled.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35303 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via the User Avatar attribute.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32723 βΌ
π Read
via "National Vulnerability Database".
Prism is a syntax highlighting library. Some languages before 1.24.0 are vulnerable to Regular Expression Denial of Service (ReDoS). When Prism is used to highlight untrusted (user-given) text, an attacker can craft a string that will take a very very long time to highlight. This problem has been fixed in Prism v1.24. As a workaround, do not use ASCIIDoc or ERB to highlight untrusted text. Other languages are not affected and can be used to highlight untrusted text.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35301 βΌ
π Read
via "National Vulnerability Database".
Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information via the Ticket Article detail view.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35299 βΌ
π Read
via "National Vulnerability Database".
Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows attackers to obtain sensitive information via email connection configuration probing.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35300 βΌ
π Read
via "National Vulnerability Database".
Text injection/Content Spoofing in 404 page in Zammad 1.0.x up to 4.0.0 could allow remote attackers to manipulate users into visiting the attackers' page.π Read
via "National Vulnerability Database".
π΄ Microsoft Refining Third-Party Driver Vetting Processes After Signing Malicious Rootkit π΄
π Read
via "Dark Reading".
Rogue driver was distributed within gaming community in China, company says.π Read
via "Dark Reading".
Dark Reading
Microsoft Refining Third-Party Driver Vetting Processes After Signing Malicious Rootkit
Rogue driver was distributed within gaming community in China, company says.
β Data for 700M LinkedIn Users Posted for Sale in Cyber-Underground β
π Read
via "Threat Post".
After 500 million LinkedIn enthusiasts were affected in a data-scraping incident in April, it's happened again - with big security ramifications.π Read
via "Threat Post".
Threat Post
Data for 700M LinkedIn Users Posted for Sale in Cyber-Underground
After 500 million LinkedIn enthusiasts were affected in a data-scraping incident in April, it's happened again - with big security ramifications.
βΌ CVE-2021-1134 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data. The vulnerability is due to an incomplete validation of the X.509 certificate used when establishing a connection between DNA Center and an ISE server. An attacker could exploit this vulnerability by supplying a crafted certificate and could then intercept communications between the ISE and DNA Center. A successful exploit could allow the attacker to view and alter sensitive information that the ISE maintains about clients that are connected to the network.π Read
via "National Vulnerability Database".
β Cobalt Strike Usage Explodes Among Cybercrooks β
π Read
via "Threat Post".
The legit security tool has shown up 161 percent more, year-over-year, in cyberattacks, having βgone fully mainstream in the crimeware world.βπ Read
via "Threat Post".
Threat Post
Cobalt Strike Usage Explodes Among Cybercrooks
The legit security tool has shown up 161 percent more, year-over-year, in cyberattacks, having βgone fully mainstream in the crimeware world.β