โ Google Crushes YouTube Cookie-Stealing Channel Hijackers โ
๐ Read
via "Threat Post".
Google has caught and brushed off a bunch of cookie-stealing YouTube channel hijackers who were running cryptocurrency scams on, or auctioning off, ripped-off channels. ๐ Read
via "Threat Post".
Threat Post
Google Crushes YouTube Cookie-Stealing Channel Hijackers
Google has caught and brushed off a bunch of cookie-stealing YouTube channel hijackers who were running cryptocurrency scams on, or auctioning off, ripped-off channels.
๐ด Removing Friction for the Enterprise With Trusted Access ๐ด
๐ Read
via "Dark Reading".
Our work lives are supposed to be simpler and easier because of technology. At least thatโs the promise.๐ Read
via "Dark Reading".
Dark Reading
Removing Friction for the Enterprise With Trusted Access
Our work lives are supposed to be simpler and easier because of technology. At least thatโs the promise.
โผ CVE-2021-42762 โผ
๐ Read
via "National Vulnerability Database".
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. The impact is limited to host services that create UNIX sockets that WebKit mounts inside its sandbox, and the sandboxed process remains otherwise confined. NOTE: this is similar to CVE-2021-41133.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-41167 โผ
๐ Read
via "National Vulnerability Database".
modern-async is an open source JavaScript tooling library for asynchronous operations using async/await and promises. In affected versions a bug affecting two of the functions in this library: forEachSeries and forEachLimit. They should limit the concurrency of some actions but, in practice, they don't. Any code calling these functions will be written thinking they would limit the concurrency but they won't. This could lead to potential security issues in other projects. The problem has been patched in 1.0.4. There is no workaround.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-38896 โผ
๐ Read
via "National Vulnerability Database".
IBM QRadar Advisor 2.5 through 2.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 209566.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-41135 โผ
๐ Read
via "National Vulnerability Database".
The Cosmos-SDK is a framework for building blockchain applications in Golang. Affected versions of the SDK were vulnerable to a consensus halt due to non-deterministic behaviour in a ValidateBasic method in the x/authz module. The MsgGrant of the x/authz module contains a Grant field which includes a user-defined expiration time for when the authorization grant expires. In Grant.ValidateBasic(), that time is compared to the nodeรยขรขโยฌรขโยขs local clock time. Any chain running an affected version of the SDK with the authz module enabled could be halted by anyone with the ability to send transactions on that chain. Recovery would require applying the patch and rolling back the latest block. Users are advised to update to version 0.44.2.๐ Read
via "National Vulnerability Database".
๐ด Execs From Now-Defunct GigaTrust Arrested in $50M Fraud Scheme ๐ด
๐ Read
via "Dark Reading".
Email endpoint security-as-a-service company founder and two others indicted in an elaborate financial fraud scheme.๐ Read
via "Dark Reading".
Dark Reading
Execs From Now-Defunct GigaTrust Arrested in $50M Fraud Scheme
Email endpoint security-as-a-service company founder and two others indicted in an elaborate financial fraud scheme.
๐ด MITRE Engenuity Announces ATT&CKยฎ Evaluations Call for Participation for Managed Services ๐ด
๐ Read
via "Dark Reading".
Offering to provide transparency into the capabilities of managed security service providers and and managed detection and response competencies.๐ Read
via "Dark Reading".
Dark Reading
MITRE Engenuity Announces ATT&CKยฎ Evaluations Call for Participation for Managed Services
Offering to provide transparency into the capabilities of managed security service providers and and managed detection and response competencies.
๐ด Google: Phishing Campaign Targets YouTube Creators ๐ด
๐ Read
via "Dark Reading".
The attackers behind the campaign, which distributes cookie theft malware, are attributed to actors recruited in a Russian-speaking forum.๐ Read
via "Dark Reading".
Dark Reading
Google: Phishing Campaign Targets YouTube Creators
The attackers behind the campaign, which distributes cookie theft malware, are attributed to actors recruited in a Russian-speaking forum.
๐ด CISA Awards $2 Million to Bring Cybersecurity Training to Rural Communities and Diverse Populations ๐ด
๐ Read
via "Dark Reading".
Award recipients NPower and CyberWarrior recognized for development of cyber workforce training programs.๐ Read
via "Dark Reading".
Dark Reading
CISA Awards $2 Million to Bring Cybersecurity Training to Rural Communities and Diverse Populations
Award recipients NPower and CyberWarrior recognized for development of cyber workforce training programs.
๐ด Microsoft, Intel, and Goldman Sachs to Lead New TCG Work Group to Tackle Supply Chain Security Challenges ๐ด
๐ Read
via "Dark Reading".
Led by representatives from the three companies, the work group will create guidance that defines, implements, and upholds security standards for the entire supply chain.๐ Read
via "Dark Reading".
Dark Reading
Microsoft, Intel, and Goldman Sachs to Lead New TCG Work Group to Tackle Supply Chain Security Challenges
Led by representatives from the three companies, the work group will create guidance that defines, implements, and upholds security standards for the entire supply chain.
๐ด Optiv Announces Second Annual $40,000 Scholarship for Black, African American Identifying STEM Students ๐ด
๐ Read
via "Dark Reading".
$10,000 to be awarded annually for four years each by Optivโs Black Employee Network.๐ Read
via "Dark Reading".
Dark Reading
Optiv Announces Second Annual $40,000 Scholarship for Black, African American Identifying STEM Students
$10,000 to be awarded annually for four years each by Optivโs Black Employee Network.
๐ด Microsoft-Signed Rootkit Targets Gaming Environments in China ๐ด
๐ Read
via "Dark Reading".
FiveSys is the second publicly known rootkit since June that attackers have managed to sneak past Microsoft's driver certification process.๐ Read
via "Dark Reading".
Dark Reading
Microsoft-Signed Rootkit Targets Gaming Environments in China
FiveSys is the second publicly known rootkit since June that attackers have managed to sneak past Microsoft's driver certification process.
โผ CVE-2021-42771 โผ
๐ Read
via "National Vulnerability Database".
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-42765 โผ
๐ Read
via "National Vulnerability Database".
The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-19 allows an adversary to leverage network delay to cause a denial of service (indefinite stalling of consensus decisions).๐ Read
via "National Vulnerability Database".
โผ CVE-2021-42766 โผ
๐ Read
via "National Vulnerability Database".
The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-19 allows an adversary to cause a denial of service (long-range consensus chain reorganizations), even when this adversary has little stake and cannot influence network message propagation. This can cause a protocol stall, or an increase in the profits of individual validators.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-42764 โผ
๐ Read
via "National Vulnerability Database".
The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-19 allows an adversary to cause a denial of service (delayed consensus decisions), and also increase the profits of individual validators, via short-range reorganizations of the underlying consensus chain.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-40121 โผ
๐ Read
via "National Vulnerability Database".
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. For more information about these vulnerabilities, see the Details section of this advisory.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-34736 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to cause the web-based management interface to unexpectedly restart. The vulnerability is due to insufficient input validation on the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to cause the interface to restart, resulting in a denial of service (DoS) condition.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-39126 โผ
๐ Read
via "National Vulnerability Database".
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify various resources via a Cross-Site Request Forgery (CSRF) vulnerability, following an Information Disclosure vulnerability in the referrer headers which discloses a user's CSRF token. The affected versions are before version 8.5.10, and from version 8.6.0 before 8.13.2.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-42096 โผ
๐ Read
via "National Vulnerability Database".
GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A certain csrf_token value is derived from the admin password, and may be useful in conducting a brute-force attack against that password.๐ Read
via "National Vulnerability Database".