π΄ SOC Investment Improves Detection and Response Times, Data Shows π΄
π Read
via "Dark Reading".
A survey of IT and security pros finds many are confident in their ability to detect security incidents in near-real time or within minutes.π Read
via "Dark Reading".
Dark Reading
SOC Investment Improves Detection and Response Times, Data Shows
A survey of IT and security pros finds many are confident in their ability to detect security incidents in near-real time or within minutes.
π΄ Microsoft Issues New CVE for 'PrintNightmare' Flaw π΄
π Read
via "Dark Reading".
Company says remote code execution issue in all Windows versions is different from one in Windows Print Spooler that it had patched last month, though both affect same function.π Read
via "Dark Reading".
Dark Reading
Microsoft Issues New CVE for 'PrintNightmare' Flaw
Company says remote code execution issue in all Windows versions is different from one in Windows Print Spooler that it had patched last month, though both affect same function.
π΄ Secured-Core PCs May Mitigate Firmware Attacks, But Adoption Lags π΄
π Read
via "Dark Reading".
Microsoft maintains that exploitation of recent Dell vulnerabilities would be blocked on ultra-secure PCs - but most systems do not have the technology yet.π Read
via "Dark Reading".
βΌ CVE-2021-23402 βΌ
π Read
via "National Vulnerability Database".
All versions of package record-like-deep-assign are vulnerable to Prototype Pollution via the main functionality.π Read
via "National Vulnerability Database".
π΄ Barracuda Agrees to Acquire Skout Cybersecurity π΄
π Read
via "Dark Reading".
The acquisition will bring Barracuda into the extended detection and response (XDR) market with a tool for managed service providers.π Read
via "Dark Reading".
βΌ CVE-2021-32737 βΌ
π Read
via "National Vulnerability Database".
Sulu is an open-source PHP content management system based on the Symfony framework. In versions of Sulu prior to 1.6.41, it is possible for a logged in admin user to add a script injection (cross-site-scripting) in the collection title. The problem is patched in version 1.6.41. As a workaround, one may manually patch the affected JavaScript files in lieu of updating.π Read
via "National Vulnerability Database".
βΌ CVE-2020-23185 βΌ
π Read
via "National Vulnerability Database".
A stored cross site scripting (XSS) vulnerability in /administration/setting_security.php of PHP-Fusion 9.03.60 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload.π Read
via "National Vulnerability Database".
βΌ CVE-2020-23178 βΌ
π Read
via "National Vulnerability Database".
An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.π Read
via "National Vulnerability Database".
π¦Ώ You don't have to be a tech expert to become a cybersecurity pro π¦Ώ
π Read
via "Tech Republic".
Attention to detail, creativity and perseverance are key traits for a good white hat hacker. These positions are in high demand.π Read
via "Tech Republic".
βΌ CVE-2021-36146 βΌ
π Read
via "National Vulnerability Database".
ACRN before 2.5 has a devicemodel/hw/pci/xhci.c NULL Pointer Dereference for a trb pointer.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34527 βΌ
π Read
via "National Vulnerability Database".
Windows Print Spooler Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
β Ransomware Defense: Top 5 Things to Do Right Now β
π Read
via "Threat Post".
Matt Bromiley, senior consultant with Mandiant Managed Defense, discusses the top tricks and tips for protecting enterprise environments from ransomware.π Read
via "Threat Post".
Threat Post
Ransomware Defense: Top 5 Things to Do Right Now
Matt Bromiley, senior consultant with Mandiant Managed Defense, discusses the top tricks and tips for protecting enterprise environments from ransomware.
βΌ CVE-2021-23401 βΌ
π Read
via "National Vulnerability Database".
This affects all versions of package Flask-User. When using the make_safe_url function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes such as /////evil.com/path or \\\evil.com/path. This vulnerability is only exploitable if an alternative WSGI server other than Werkzeug is used, or the default behaviour of Werkzeug is modified using 'autocorrect_location_header=False.π Read
via "National Vulnerability Database".
π΄ Watch for Cybersecurity Games at the Tokyo Olympics π΄
π Read
via "Dark Reading".
The cybersecurity professionals guarding the Summer Olympics are facing at least as much competition as the athletes, and their failure could have steeper ramifications.π Read
via "Dark Reading".
β Kaseya ransomware attackers say: βPay $70 million and weβll set everyone freeβ β
π Read
via "Naked Security".
Are you feeling generous? Do you want to help others? These cybercriminals are hoping someone is and does...π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
βΌ CVE-2020-26763 βΌ
π Read
via "National Vulnerability Database".
The Rocket.Chat desktop application 2.17.11 opens external links without user interaction.π Read
via "National Vulnerability Database".
π SQLMAP - Automatic SQL Injection Tool 1.5.7 π
π Read
via "Packet Storm Security".
sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.π Read
via "Packet Storm Security".
Packetstormsecurity
SQLMAP - Automatic SQL Injection Tool 1.5.7 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
β Kaseya ransomware attackers say: βPay $70 million and weβll set everyone freeβ β
π Read
via "Naked Security".
Are you feeling generous? Do you want to help others? These cybercriminals are hoping someone is and does...π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
β S3 Ep 39.5: A conversation with Eva Galperin [Podcast] β
π Read
via "Naked Security".
Cryptography, privacy, stalkerware and how infosec professionals relax. Listen, enjoy and learn!π Read
via "Naked Security".
Naked Security
S3 Ep39.5: A conversation with Eva Galperin [Podcast]
Cryptography, privacy, stalkerware and how infosec professionals relax. Listen, enjoy and learn!
β Kaseya Attack Fallout: CISA, FBI Offer Guidance β
π Read
via "Threat Post".
Following a brazen ransomware attack by the REvil cybergang, CISA and FBI offer guidance to victims.π Read
via "Threat Post".
Threat Post
Kaseya Attack Fallout: CISA, FBI Offer Guidance
Following a brazen ransomware attack by the REvil cybergang, CISA and FBI offer guidance to victims.
βΌ CVE-2021-36158 βΌ
π Read
via "National Vulnerability Database".
In the xrdp package (in branches through 3.14) for Alpine Linux, RDP sessions are vulnerable to man-in-the-middle attacks because pre-generated RSA certificates and private keys are used.π Read
via "National Vulnerability Database".