π¦Ώ Behind the scenes: A day in the life of a CIO π¦Ώ
π Read
via "Tech Republic".
Getting to the point where you're proactive is "utopia," says Jadee Hanson, CIO at Code42.π Read
via "Tech Republic".
TechRepublic
Behind the scenes: A day in the life of a CIO
Getting to the point where you're proactive is "utopia," says Jadee Hanson, CIO at Code42.
π¦Ώ The cybersecurity skills gap persists for the fifth year running π¦Ώ
π Read
via "Tech Republic".
Most organizations are still lacking talent, according to a new report, but experts think expanding the definition of a cybersecurity professional can help.π Read
via "Tech Republic".
TechRepublic
The cybersecurity skills gap persists for the fifth year running
Most organizations are still lacking talent, according to a new report, but experts think expanding the definition of a cybersecurity professional can help.
βΌ CVE-2021-35392 βΌ
π Read
via "National Vulnerability Database".
Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or mini_upnpd and is the successor to miniigd. The server is vulnerable to a heap buffer overflow that is present due to unsafe crafting of SSDP NOTIFY messages from received M-SEARCH messages ST header.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35393 βΌ
π Read
via "National Vulnerability Database".
Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or mini_upnpd and is the successor to miniigd. The server is vulnerable to a stack buffer overflow vulnerability that is present due to unsafe parsing of the UPnP SUBSCRIBE/UNSUBSCRIBE Callback header. Successful exploitation of this vulnerability allows remote unauthenticated attackers to gain arbitrary code execution on the affected device.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35394 βΌ
π Read
via "National Vulnerability Database".
Realtek Jungle SDK version v2.x up to v3.4.14B provides a diagnostic tool called 'MP Daemon' that is usually compiled as 'UDPServer' binary. The binary is affected by multiple memory corruption vulnerabilities and an arbitrary command injection vulnerability that can be exploited by remote unauthenticated attackers.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38607 βΌ
π Read
via "National Vulnerability Database".
Crocoblock JetEngine before 2.6.1 allows XSS by remote authenticated users via a custom form input.π Read
via "National Vulnerability Database".
βΌ CVE-2021-35395 βΌ
π Read
via "National Vulnerability Database".
Realtek Jungle SDK version v2.x up to v3.4.14B provides an HTTP web server exposing a management interface that can be used to configure the access point. Two versions of this management interface exists: one based on Go-Ahead named webs and another based on Boa named boa. Both of them are affected by these vulnerabilities. Specifically, these binaries are vulnerable to the following issues: - stack buffer overflow in formRebootCheck due to unsafe copy of submit-url parameter - stack buffer overflow in formWsc due to unsafe copy of submit-url parameter - stack buffer overflow in formWlanMultipleAP due to unsafe copy of submit-url parameter - stack buffer overflow in formWlSiteSurvey due to unsafe copy of ifname parameter - stack buffer overflow in formStaticDHCP due to unsafe copy of hostname parameter - stack buffer overflow in formWsc due to unsafe copy of 'peerPin' parameter - arbitrary command execution in formSysCmd via the sysCmd parameter - arbitrary command injection in formWsc via the 'peerPin' parameter Exploitability of identified issues will differ based on what the end vendor/manufacturer did with the Realtek SDK webserver. Some vendors use it as-is, others add their own authentication implementation, some kept all the features from the server, some remove some of them, some inserted their own set of features. However, given that Realtek SDK implementation is full of insecure calls and that developers tends to re-use those examples in their custom code, any binary based on Realtek SDK webserver will probably contains its own set of issues on top of the Realtek ones (if kept). Successful exploitation of these issues allows remote attackers to gain arbitrary code execution on the device.π Read
via "National Vulnerability Database".
β 100m T-Mobile Customer Records Purportedly Up for Sale β
π Read
via "Threat Post".
The seller claims to have sucker-punched U.S. infrastructure out of retaliation. The offer: 30m records for ~1 penny each, with the rest being sold privately.π Read
via "Threat Post".
Threat Post
100m T-Mobile Customer Records Purportedly Up for Sale
UPDATE: T-Mobile confirmed the breach, but hasn't confirmed whether customer data was involved. The offer: 30m records for ~1 penny each, with the rest being sold privately.
βΌ CVE-2021-38756 βΌ
π Read
via "National Vulnerability Database".
Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through prescribe.php.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38754 βΌ
π Read
via "National Vulnerability Database".
SQL Injection vulnerability in Hospital Management System due to lack of input validation in messearch.php.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38755 βΌ
π Read
via "National Vulnerability Database".
Unauthenticated doctor entry deletion in Hospital Management System in admin-panel1.php.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38757 βΌ
π Read
via "National Vulnerability Database".
Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through contact.php.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38752 βΌ
π Read
via "National Vulnerability Database".
A cross-site scripting (XSS) vulnerability in Online Catering Reservation System using PHP on Sourcecodester allows an attacker to arbitrarily inject code in the search bar.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38753 βΌ
π Read
via "National Vulnerability Database".
An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38751 βΌ
π Read
via "National Vulnerability Database".
A HTTP Host header attack exists in ExponentCMS 2.6 and below in /exponent_constants.php. A modified HTTP header can change links on the webpage to an arbitrary value, leading to a possible attack vector for MITM.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38758 βΌ
π Read
via "National Vulnerability Database".
Directory traversal in Online Catering Reservation System due to lack of validation in index.php.π Read
via "National Vulnerability Database".
β Copyright scammers turn to phone numbers instead of web links β
π Read
via "Naked Security".
Forewarned is forearmed. Here's our advice on dealing with "copyright infringement" scammers.π Read
via "Naked Security".
Naked Security
Copyright scammers turn to phone numbers instead of web links
Forewarned is forearmed. Hereβs our advice on dealing with βcopyright infringementβ scammers.
β S3 Ep45: Routers attacked, hacking tool hacked, and betrayers betrayed [Podcast] β
π Read
via "Naked Security".
Latest episode - listen now! (And learn about the Navajo Nation's selfless cryptographic contribution to America.)π Read
via "Naked Security".
Naked Security
S3 Ep45: Routers attacked, hacking tool hacked, and betrayers betrayed [Podcast]
Latest episode β listen now! (And learn about the Navajo Nationβs selfless cryptographic contribution to America.)
π¦Ώ Windows 10: How to activate Microsoft Defender Application Guard π¦Ώ
π Read
via "Tech Republic".
Microsoft Defender Application Guard protects your networks and data from malicious applications running in your web browser. Learn how to install and activate this Windows 10 security feature.π Read
via "Tech Republic".
TechRepublic
Windows 10: How to activate Microsoft Defender Application Guard
Microsoft Defender Application Guard protects your networks and data from malicious applications running in your web browser. Learn how to install and activate this Windows 10 security feature.
β XSS Bug in SEOPress WordPress Plugin Allows Site Takeover β
π Read
via "Threat Post".
The bug would allow a number of malicious actions, up to and including full site takeover. The vulnerable plugin is installed on 100,000 websites.π Read
via "Threat Post".
Threat Post
XSS Bug in SEOPress WordPress Plugin Allows Site Takeover
The bug would allow a number of malicious actions, up to and including full site takeover. The vulnerable plugin is installed on 100,000 websites.
π Yearlong Office 365 Phishing Campaign Skilled at Evasion π
π Read
via "".
A new phishing campaign targeting Office 365 has used Morse code and other forms of obfuscation to side step detection for the last year.π Read
via "".