π΄ Why Should I Care About HTTP Request Smuggling? π΄
π Read
via "Dark Reading".
HTTP request smuggling is a growing vulnerability, but you can manage the risk with proper server configuration.π Read
via "Dark Reading".
Dark Reading
Why Should I Care About HTTP Request Smuggling?
HTTP request smuggling is a growing vulnerability, but you can manage the risk with proper server configuration.
π΄ DAST to the Future: Shifting the Modern AppSec Paradigm π΄
π Read
via "Dark Reading".
NTT Application Security's Modern AppSec Framework takes a DAST-first approach to defend applications where breaches happen β in production.π Read
via "Dark Reading".
Dark Reading
DAST to the Future: Shifting the Modern AppSec Paradigm
NTT Application Security's Modern AppSec Framework takes a DAST-first approach to defend applications where breaches happen β in production.
β Conti Ransomware Expands Ability to Blow Up Backups β
π Read
via "Threat Post".
The Conti ransomware gang has developed novel tactics to demolish backups, especially the Veeam recovery software.π Read
via "Threat Post".
Threat Post
Conti Ransomware Expands Ability to Blow Up Backups
The Conti ransomware gang has developed novel tactics to demolish backups, especially the Veeam recovery software.
π¦Ώ How people concoct their passwords, and why they often stink π¦Ώ
π Read
via "Tech Republic".
Less than a third of the people surveyed by NordPass follow best practices when devising a password.π Read
via "Tech Republic".
TechRepublic
How people concoct their passwords, and why they often stink
Less than a third of the people surveyed by NordPass follow best practices when devising a password.
π΄ Russian Officials Arrest Group-IB CEO, Accuse Him of Treason π΄
π Read
via "Dark Reading".
Ilya Sachkov, founder and CEO of the massive cybersecurity firm, was arrested on treason charges and will be in custody for two months.π Read
via "Dark Reading".
Dark Reading
Russian Officials Arrest Group-IB CEO, Accuse Him of Treason
Ilya Sachkov, founder and CEO of the massive cybersecurity firm, was arrested on treason charges and will be in custody for two months.
βΌ CVE-2021-25961 βΌ
π Read
via "National Vulnerability Database".
In Γ’β¬ΕSuiteCRMΓ’β¬οΏ½ application, v7.1.7 through v7.10.31 and v7.11-beta through v7.11.20 fail to properly invalidate password reset links that is associated with a deleted user id, which makes it possible for account takeover of any newly created user with the same user id.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25960 βΌ
π Read
via "National Vulnerability Database".
In Γ’β¬ΕSuiteCRMΓ’β¬οΏ½ application, v7.11.18 through v7.11.19 and v7.10.29 through v7.10.31 are affected by Γ’β¬ΕCSV InjectionΓ’β¬οΏ½ vulnerability (Formula Injection). A low privileged attacker can use accounts module to inject payloads in the input fields. When an administrator access accounts module to export the data as a CSV file and opens it, the payload gets executed. This was not fixed properly as part of CVE-2020-15301, allowing the attacker to bypass the security measure.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25959 βΌ
π Read
via "National Vulnerability Database".
In OpenCRX, versions v4.0.0 through v5.1.0 are vulnerable to reflected Cross-site Scripting (XSS), due to unsanitized parameters in the password reset functionality. This allows execution of external javascript files on any user of the openCRX instance.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25962 βΌ
π Read
via "National Vulnerability Database".
Γ’β¬ΕShuupΓ’β¬οΏ½ application in versions 0.4.2 to 2.10.8 is affected by the Γ’β¬ΕFormula InjectionΓ’β¬οΏ½ vulnerability. A customer can inject payloads in the name input field in the billing address while buying a product. When a store administrator accesses the reports page to export the data as an Excel file and opens it, the payload gets executed.π Read
via "National Vulnerability Database".
π¦Ώ Ping Identity buys Singular Key and promises smoother ID verification and access management π¦Ώ
π Read
via "Tech Republic".
The purchase of Singular Key will add to Ping's identity and access management service with a no-code method of creating workflows for identity verification for enterprises.π Read
via "Tech Republic".
TechRepublic
Ping Identity buys Singular Key and promises smoother ID verification and access management
The purchase of Singular Key will add to Ping's identity and access management service with a no-code method of creating workflows for identity verification for enterprises.
π΄ Cyberspace, Cybergames, and Cyberspies π΄
π Read
via "Dark Reading".
How cyberspace has become a global cybergames stage, where all of us are actors.π Read
via "Dark Reading".
Dark Reading
Cyberspace, Cybergames, and Cyberspies
How cyberspace has become a global cybergames stage, where all of us are actors.
β GriftHorse Money-Stealing Trojan Takes 10M Android Users for a Ride β
π Read
via "Threat Post".
The mobile malware has fleeced hundreds of millions of dollars from victims globally, using sophisticated techniques.π Read
via "Threat Post".
Threat Post
GriftHorse Money-Stealing Trojan Takes 10M Android Users for a Ride
The mobile malware has fleeced hundreds of millions of dollars from victims globally, using sophisticated techniques.
βΌ CVE-2021-29834 βΌ
π Read
via "National Vulnerability Database".
IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, 19.0.0.3,20.0.0.1, 20.0.0.2, and 21.0.2 and IBM Business Process Manager 8.5 and 8.6 are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 204832.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39831 βΌ
π Read
via "National Vulnerability Database".
Adobe Framemaker versions 2019 Update 8 (and earlier) and 2020 Release Update 2 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious PDF file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39846 βΌ
π Read
via "National Vulnerability Database".
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a stack overflow vulnerability due to insecure handling of a crafted PDF file, potentially resulting in memory corruption in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted PDF file in Acrobat Reader.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39851 βΌ
π Read
via "National Vulnerability Database".
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An authenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39838 βΌ
π Read
via "National Vulnerability Database".
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a use-after-free vulnerability in the processing of the AcroForm buttonGetCaption action that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40708 βΌ
π Read
via "National Vulnerability Database".
Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerability in the AGSService installer. An authenticated attacker could leverage this vulnerability to achieve read / write privileges to execute arbitrary code. User interaction is required to abuse this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39865 βΌ
π Read
via "National Vulnerability Database".
Adobe Framemaker versions 2019 Update 8 (and earlier) and 2020 Release Update 2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39862 βΌ
π Read
via "National Vulnerability Database".
Adobe Framemaker versions 2019 Update 8 (and earlier) and 2020 Release Update 2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39855 βΌ
π Read
via "National Vulnerability Database".
Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability. An unauthenticated attacker could leverage this vulnerability to obtain NTLMv2 credentials. Exploitation of this issue requires user interaction in that a victim must open a maliciously crafted Microsoft Office file, or visit an attacker controlled web page.π Read
via "National Vulnerability Database".