π¦Ώ Microsoft rolls out emergency patch for critical PrintNightmare flaw π¦Ώ
π Read
via "Tech Republic".
Fixing a serious security hole in the Windows Print spooler service, the patch is available for almost all versions of Windows, even Windows 7.π Read
via "Tech Republic".
β Why I Love (Breaking Into) Your Security Appliances β
π Read
via "Threat Post".
David "moose" Wolpoff, CTO at Randori, discusses security appliances and VPNs and how attackers only have to "pick one lock" to invade an enterprise through them.π Read
via "Threat Post".
Threat Post
Why I Love (Breaking Into) Your Security Appliances
David "moose" Wolpoff, CTO at Randori, discusses security appliances and VPNs and how attackers only have to "pick one lock" to invade an enterprise through them.
βΌ CVE-2021-34623 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in the image uploader component found in the ~/src/Classes/ImageUploader.php file of the ProfilePress WordPress plugin made it possible for users to upload arbitrary files during user registration or during profile updates. This issue affects versions 3.0.0 - 3.1.3. .π Read
via "National Vulnerability Database".
βΌ CVE-2021-34624 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in the file uploader component found in the ~/src/Classes/FileUploader.php file of the ProfilePress WordPress plugin made it possible for users to upload arbitrary files during user registration or during profile updates. This issue affects versions 3.0.0 - 3.1.3. .π Read
via "National Vulnerability Database".
βΌ CVE-2021-22555 βΌ
π Read
via "National Vulnerability Database".
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name spaceπ Read
via "National Vulnerability Database".
βΌ CVE-2021-36212 βΌ
π Read
via "National Vulnerability Database".
app/View/SharingGroups/view.ctp in MISP before 2.4.146 allows stored XSS in the sharing groups view.π Read
via "National Vulnerability Database".
β Fake Kaseya VSA Security Update Drops Cobalt Strike β
π Read
via "Threat Post".
Threat actors are planting Cobalt Strike backdoors by malspamming a bogus Microsoft update along with a SecurityUpdates.exe.π Read
via "Threat Post".
Threat Post
Fake Kaseya VSA Security Update Drops Cobalt Strike
Threat actors are planting Cobalt Strike backdoors by malspamming a bogus Microsoft update along with a SecurityUpdates.exe.
π΄ Security 101: The 'PrintNightmare' Flaw π΄
π Read
via "Dark Reading".
A closer look at the printer software vulnerability - and what you can do about it.π Read
via "Dark Reading".
Dark Reading
Dark Reading | Security | Protect The Business
Dark Reading: Connecting The Cybersecurity Community.
π¦Ώ Critical flaws in Windows Print spooler service could allow for remote attacks π¦Ώ
π Read
via "Tech Republic".
Administrators are urged to apply the latest patches from Microsoft and disable the Windows Print spooler service in domain controllers and systems not used for printing.π Read
via "Tech Republic".
TechRepublic
Critical flaws in Windows Print spooler service could allow for remote attacks
Administrators are urged to apply the latest patches from Microsoft and disable the Windows Print spooler service in domain controllers and systems not used for printing.
π¦Ώ Critical flaws in Windows Print spooler service could allow for remote attacks π¦Ώ
π Read
via "Tech Republic".
Administrators are urged to apply the latest patches from Microsoft and disable the Windows Print spooler service in domain controllers and systems not used for printing.π Read
via "Tech Republic".
TechRepublic
Critical flaws in Windows Print spooler service could allow for remote attacks
Administrators are urged to apply the latest patches from Microsoft and disable the Windows Print spooler service in domain controllers and systems not used for printing.
π Zeek 4.0.3 π
π Read
via "Packet Storm Security".
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.π Read
via "Packet Storm Security".
Packetstormsecurity
Zeek 4.0.3 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
β Suspected βDr HeXβ Hacker Busted for 9 Years of Phishing β
π Read
via "Threat Post".
The unnamed suspect allegedly helped to develop carding and phishing kits with the aim of stealing customers' bank-card data.π Read
via "Threat Post".
Threat Post
Suspected βDr HeXβ Hacker Busted for 9 Years of Phishing
The unnamed suspect allegedly helped to develop carding and phishing kits with the aim of stealing customers' bank-card data.
βΌ CVE-2020-24143 βΌ
π Read
via "National Vulnerability Database".
Directory traversal in the Video Downloader for TikTok (aka downloader-tiktok) plugin 1.3 for WordPress lets an attacker get access to files that are stored outside the web root folder via the njt-tk-download-video parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2020-20211 βΌ
π Read
via "National Vulnerability Database".
Mikrotik RouterOs 6.44.5 (long-term tree) suffers from an assertion failure vulnerability in the /nova/bin/console process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32535 βΌ
π Read
via "National Vulnerability Database".
The vulnerability of hard-coded default credentials in QSAN SANOS allows unauthenticated remote attackers to obtain administratorΓ’β¬β’s permission and execute arbitrary functions.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32514 βΌ
π Read
via "National Vulnerability Database".
Improper access control vulnerability in FirmwareUpgrade in QSAN Storage Manager allows remote attackers to reboot and discontinue the device.π Read
via "National Vulnerability Database".
π΄ Microsoft Releases Emergency Patch for 'PrintNightmare' Flaw π΄
π Read
via "Dark Reading".
Urges Organizations to immediately apply security update citing exploit activity.π Read
via "Dark Reading".
Dark Reading
Microsoft Releases Emergency Patch for 'PrintNightmare' Vuln
It urges organizations to immediately apply security update, citing exploit activity.
π΄ Are Security Attestations a Necessity for SaaS Businesses? π΄
π Read
via "Dark Reading".
Are security attestations becoming business imperatives, or are they merely token additions on the list of regulatory requirements?π Read
via "Dark Reading".
π¦Ώ Bitwarden has a new Send feature: Here's how to use it π¦Ώ
π Read
via "Tech Republic".
This tool will make this productβprobably the best password manager on the marketβeven better.π Read
via "Tech Republic".
TechRepublic
How to use Bitwarden's new Send feature
What is probably the best open source password manager on the market has added a new feature that will make using the tool even better.
β MacOS Targeted in WildPressure APT Malware Campaign β
π Read
via "Threat Post".
Threat actors enlist compromised WordPress websites in campaign targeting macOS users.π Read
via "Threat Post".
Threat Post
MacOS Targeted in WildPressure APT Malware Campaign
Threat actors enlist compromised WordPress websites in campaign targeting macOS users.
βΌ CVE-2021-20416 βΌ
π Read
via "National Vulnerability Database".
IBM Guardium Data Encryption (GDE) 3.0.0.3 and 4.0.0.4 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 196218.π Read
via "National Vulnerability Database".