🛡 Cybersecurity & Privacy 🛡 - News

Six Malicious Linux Shell Scripts Used to Evade Defenses and How to Stop Them

Uptycs Threat Research outline how malicious Linux shell scripts are used to cloak attacks and how defenders can detect and mitigate against them.

334 views13:19

‼ CVE-2021-20505 ‼

The PowerVM Logical Partition Mobility(LPM) (PowerVM Hypervisor FW920, FW930, FW940, and FW950) encryption key exchange protocol can be compromised. If an attacker has the ability to capture encrypted LPM network traffic and is able to gain service access to the FSP they can use this information to perform a series of PowerVM service procedures to decrypt the captured migration traffic IBM X-Force ID: 198232

📖 Read

via "National Vulnerability Database".

341 views14:14

🦿 How to attend Black Hat USA 2021 and DEF CON 29 virtually 🦿

DEF CON 29 sold out of virtual passes, so tuning in on Twitch and Discord are the best options for attending online this year.

📖 Read

via "Tech Republic".

How to attend Black Hat USA 2021 and DEF CON 29 virtually

DEF CON 29 sold out of virtual passes, so tuning in on Twitch and Discord are the best options for attending online this year.

354 views14:39

❌ Israeli Government Agencies Visit NSO Group Offices ❌

Authorities opened an investigation into the secretive Israeli security firm.

📖 Read

via "Threat Post".

Israeli Government Agencies Visit NSO Group Offices

Authorities opened an investigation into the secretive Israeli security firm.

306 views16:49

‼ CVE-2021-21538 ‼

Dell EMC iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.10.00, contain an improper authentication vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain access to the virtual console.

📖 Read

via "National Vulnerability Database".

289 views18:14

‼ CVE-2020-5353 ‼

The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory. An attacker may leverage a spoofed Unique Identifier (UID) over NFS to rewrite sensitive files to gain administrative access to the system.

📖 Read

via "National Vulnerability Database".

272 views18:14

‼ CVE-2021-21546 ‼

Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information Disclosure in Log Files vulnerability. A local low-privileged user of the Networker server could potentially exploit this vulnerability to read plain-text credentials from server log files.

📖 Read

via "National Vulnerability Database".

249 views18:14

‼ CVE-2020-5329 ‼

Dell EMC Avamar Server contains an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links.

📖 Read

via "National Vulnerability Database".

244 views18:14

❌ CISA’s Top 30 Bugs: One’s Old Enough to Buy Beer ❌

There are patches or remediations for all of them, but they're still being picked apart. Why should attackers stop if the flaws remain unpatched, as so many do?

📖 Read

via "Threat Post".

CISA’s Top 30 Bugs: One’s Old Enough to Buy Beer

There are patches or remediations for all of them, but they're still being picked apart. Why should attackers stop if the flaws remain unpatched, as so many do?

237 views18:49

🦿 How to remove or update a single entry from the SSH known_hosts file 🦿

SSH holds fingerprints of your remote machines in the known_hosts file. Sometimes you might need to remove or update one of those entries. Jack Wallen shows you how.

📖 Read

via "Tech Republic".

How to remove or update a single entry from the SSH known_hosts file

SSH holds fingerprints of your remote machines in the known_hosts file. Sometimes you might need to remove or update one of those entries. Jack Wallen shows you how.

240 views19:09

🦿 How to ensure your vendors are cybersecure to protect you from supply chain attacks 🦿

Right now supply-chain vendors are a prime target for cybercriminals. One expert offers ways to remove the bullseye from supply vendors.

📖 Read

via "Tech Republic".

How to ensure your vendors are cybersecure to protect you from supply chain attacks

Right now supply-chain vendors are a prime target for cybercriminals. One expert offers ways to remove the bullseye from supply vendors.

233 views19:09

🦿 The evolution of spear phishing and who criminals are targeting 🦿

A report from Barracuda Networks also identifies attack risks associated with various roles throughout a company ranging from CEOs and IT departments to employees in sales.

📖 Read

via "Tech Republic".

The evolution of spear phishing and who criminals are targeting

A report from Barracuda Networks also identifies attack risks associated with various roles throughout a company ranging from CEOs and IT departments to employees in sales.

260 views19:09

❌ UC San Diego Health Breach Tied to Phishing Attack ❌

Employee email takeover exposed personal, medical data of students, employees and patients.

📖 Read

via "Threat Post".

UC San Diego Health Breach Tied to Phishing Attack

Employee email takeover exposed personal, medical data of students, employees and patients.

282 views19:19

‼ CVE-2021-23418 ‼

The package glances before 3.2.1 are vulnerable to XML External Entity (XXE) Injection via the use of Fault to parse untrusted XML data, which is known to be vulnerable to XML attacks.

📖 Read

via "National Vulnerability Database".

288 views20:14

Mitigating Insider Risk in the Food and Agriculture Sector

🔏 Mitigating Insider Risk in the Food and Agriculture Sector 🔏

A new guide, published this week, can help organizations in the food and agriculture sector identify critical assets and defend against insider threats.

📖 Read

via "".

Digital Guardian

A new guide, published this week, can help organizations in the food and agriculture sector identify critical assets and defend against insider threats.

295 views20:21

‼ CVE-2021-36741 ‼

An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. Please note: an attacker must first obtain the ability to logon to the productâ€™s management console in order to exploit this vulnerability.

📖 Read

via "National Vulnerability Database".

323 views22:14

‼ CVE-2021-36742 ‼

A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.0 SP1 allows a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

📖 Read

via "National Vulnerability Database".

365 views22:14

‼ CVE-2021-25273 ‼

Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version 9.706.

📖 Read

via "National Vulnerability Database".

372 views22:14

🦿 HTML smuggling is the latest cybercrime tactic you need to worry about 🦿

It will be hard to catch these smugglers, as they're abusing an essential element of web browsers that allow them to assemble code at endpoints, bypassing perimeter security.

📖 Read

via "Tech Republic".

HTML smuggling is the latest cybercrime tactic you need to worry about

It will be hard to catch these smugglers, as they're abusing an essential element of web browsers that allow them to assemble code at endpoints, bypassing perimeter security.

398 views10:40

S3 Ep43: Apple 0-day, pygmy hippos, hive nightmares and Twitter hacker bust [Podcast]

⚠ S3 Ep43: Apple 0-day, pygmy hippos, hive nightmares and Twitter hacker bust [Podcast] ⚠

Latest episode - listen now!

📖 Read

via "Naked Security".

Naked Security

Latest episode – listen now!

354 views12:29