ATENTIONβΌ New - CVE-2017-8331
π Read
via "National Vulnerability Database".
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of adding new port forwarding rules to the device. It seems that the POST parameters passed in this request to set up routes on the device can be set in such a way that would result in passing commands to a "system" API in the function and thus result in command injection on the device. If the firmware version AL-R096 is dissected using binwalk tool, we obtain a cpio-root archive which contains the filesystem set up on the device that contains all the binaries. The binary "goahead" is the one that has the vulnerable function that recieves the values sent by the POST request. If we open this binary in IDA-pro we will notice that this follows a MIPS little endian format. The function sub_43C280in IDA pro is identified to be receiving the values sent in the POST request and the value set in POST parameter "ip_address" is extracted at address 0x0043C2F0. The POST parameter "ipaddress" is concatenated at address 0x0043C958 and this is passed to a "system" function at address 0x00437284. This allows an attacker to provide the payload of his/her choice and finally take control of the device.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2017-8330
π Read
via "National Vulnerability Database".
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a UPnP functionality for devices to interface with the router and interact with the device. It seems that the "NewInMessage" SOAP parameter passed with a huge payload results in crashing the process. If the firmware version AL-R096 is dissected using binwalk tool, we obtain a cpio-root archive which contains the filesystem set up on the device that contains all the binaries. The binary "miniupnpd" is the one that has the vulnerable function that receives the values sent by the SOAP request. If we open this binary in IDA-pro we will notice that this follows a MIPS little endian format. The function WscDevPutMessage at address 0x0041DBB8 in IDA pro is identified to be receiving the values sent in the SOAP request. The SOAP parameter "NewInMesage" received at address 0x0041DC30 causes the miniupnpd process to finally crash when a second request is sent to the same process.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2017-8329
π Read
via "National Vulnerability Database".
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of setting a name for the wireless network. These values are stored by the device in NVRAM (Non-volatile RAM). It seems that the POST parameters passed in this request to set up names on the device do not have a string length check on them. This allows an attacker to send a large payload in the "mssid_1" POST parameter. The device also allows a user to view the name of the Wifi Network set by the user. While processing this request, the device calls a function at address 0x00412CE4 (routerSummary) in the binary "webServer" located in Almond folder, which retrieves the value set earlier by "mssid_1" parameter as SSID2 and this value then results in overflowing the stack set up for this function and allows an attacker to control $ra register value on the stack which allows an attacker to control the device by executing a payload of an attacker's choice. If the firmware version AL-R096 is dissected using binwalk tool, we obtain a cpio-root archive which contains the filesystem set up on the device that contains all the binaries. The binary "goahead" is the one that has the vulnerable function that receives the values sent by the POST request. If we open this binary in IDA-pro we will notice that this follows a MIPS little endian format. The function sub_00420F38 in IDA pro is identified to be receiving the values sent in the POST parameter "mssid_1" at address 0x0042BA00 and then sets in the NVRAM at address 0x0042C314. The value is later retrieved in the function at address 0x00412EAC and this results in overflowing the buffer as the function copies the value directly on the stack.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2017-8328
π Read
via "National Vulnerability Database".
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of changing the administrative password for the web management interface. It seems that the device does not implement any cross site request forgery protection mechanism which allows an attacker to trick a user who is logged in to the web management interface to change a user's password. Also this is a systemic issue.π Read
via "National Vulnerability Database".
β Millions of Venmo transactions scraped (again) β
π Read
via "Naked Security".
Not much has changed since a year ago, when a bot was tweeting out publicly visible Venmo "drug" deals from the public-by-default company.π Read
via "Naked Security".
Naked Security
Millions of Venmo transactions scraped (again)
Not much has changed since a year ago, when a bot was tweeting out publicly visible Venmo βdrugβ deals from the public-by-default company.
β Hospitals are being suffocated by robocalls β
π Read
via "Naked Security".
Some pretend to be hospitals to get patients' payment data. Others pose as the goverment and try to get confidential data from hospitals.π Read
via "Naked Security".
Naked Security
Hospitals are being suffocated by robocalls
Some pretend to be hospitals to get patientsβ payment data. Others pose as the government and try to get confidential data from hospitals.
π΄ Insecure Home IoT Devices a Clear and Present Danger to Corporate Security π΄
π Read
via "Dark Reading: ".
Avast-sponsored study shows wide prevalence of IoT devices, many with weak credentials and other security vulnerabilities.π Read
via "Dark Reading: ".
Darkreading
Insecure Home IoT Devices a Clear and Present Danger to Corporate Security
Avast-sponsored study shows wide prevalence of IoT devices, many with weak credentials and other security vulnerabilities.
β Pass the salt! Popular CMSs arenβt securing passwords properly β
π Read
via "Naked Security".
A group of researchers has discovered that many of the web's most popular content management systems are using obsolete algorithms to protect their users' passwords.π Read
via "Naked Security".
Naked Security
Pass the salt! Popular CMSs arenβt securing passwords properly
A group of researchers has discovered that many of the webβs most popular content management systems are using obsolete algorithms to protect their usersβ passwords.
β Netflix researcher spots TCP SACK flaws in Linux and FreeBSD β
π Read
via "Naked Security".
Three vulnerabilities in the FreeBSD and Linux kernels could allow attackers to induce a denial-of-service by clogging networking I/O.π Read
via "Naked Security".
Naked Security
Netflix researcher spots TCP SACK flaws in Linux and FreeBSD
Three vulnerabilities in the FreeBSD and Linux kernels could allow attackers to induce a denial-of-service by clogging networking I/O.
β Mozilla Patches Firefox Critical Flaw Under Active Attack β
π Read
via "Threatpost".
Mozilla released a new update for Firefox after discovering a critical flaw under active attack.π Read
via "Threatpost".
Threat Post
Mozilla Patches Firefox Critical Flaw Under Active Attack
Mozilla is urging users to update to Firefox 67.0.3 and Firefox ESR 60.7.1 after discovering a critical flaw under active attack.
π΄ Come to Black Hat USA for the Latest Hardware Hacks π΄
π Read
via "Dark Reading: ".
Cars. Vending machines. Hotel suites. Security experts will share the tools and techniques they've used to break into all these things and more at Black Hat USA in October.π Read
via "Dark Reading: ".
Dark Reading
Come to Black Hat USA for the Latest Hardware Hacks
Cars. Vending machines. Hotel suites. Security experts will share the tools and techniques they've used to break into all these things and more at Black Hat USA in October.
π How to prepare for and navigate a technology disaster π
π Read
via "Security on TechRepublic".
Technology emergencies can be the most stressful moments of an IT professional's career. But they don't have to if you plan ahead.π Read
via "Security on TechRepublic".
TechRepublic
How to prepare for and navigate a technology disaster
Technology emergencies can be the most stressful moments of an IT professional's career. But they don't have to if you plan ahead.
β EatStreet Hackers Chow Down on Diner Data β
π Read
via "Threatpost".
Gnosticplayers have reportedly taken credit for the breach, which they say consists of 6 million records.π Read
via "Threatpost".
Threatpost
EatStreet Hackers Chow Down on Diner Data
Gnosticplayers have reportedly taken credit for the breach, which they say consists of 6 million records.
π΄ How Hackers Emptied Church Coffers with a Simple Phishing Scam π΄
π Read
via "Dark Reading: ".
Cyber thieves aren't bound by a code of ethics. They look for weak targets and high rewards, which is exactly what Saint Ambrose Catholic offered.π Read
via "Dark Reading: ".
Darkreading
How Hackers Emptied Church Coffers with a Simple Phishing Scam
Cyber thieves aren't bound by a code of ethics. They look for weak targets and high rewards, which is exactly what Saint Ambrose Catholic offered.
π How to prevent Android from displaying passwords π
π Read
via "Security on TechRepublic".
Don't let bystanders see your Android passwords as you type them. Find out how to disable this feature.π Read
via "Security on TechRepublic".
TechRepublic
How to prevent Android from displaying passwords
Don't let bystanders see your Android passwords as you type them. Find out how to disable this feature.
π 76% of mobile apps have flaws allowing hackers to steal passwords, money, and texts π
π Read
via "Security on TechRepublic".
Android apps have more critical vulnerabilities than iOS apps do, according to a Positive Technologies report.π Read
via "Security on TechRepublic".
TechRepublic
76% of mobile apps have flaws allowing hackers to steal passwords, money, and texts
Android apps have more critical vulnerabilities than iOS apps do, according to a Positive Technologies report.
π How to prevent Android from displaying passwords π
π Read
via "Security on TechRepublic".
Don't let bystanders see your Android passwords as you type them. Find out how to disable this feature.π Read
via "Security on TechRepublic".
TechRepublic
How to prevent Android from displaying passwords
Don't let bystanders see your Android passwords as you type them. Find out how to disable this feature.
π Tech news roundup: HPE Discover 2019, Facebook's Libra cryptocurrency, and Google Cloud's debacle π
π Read
via "Security on TechRepublic".
This week's TechRepublic and ZDNet news stories include a look at the companies that hire the most data scientists, four significant impacts of a security breach, and a first-hand account of a major hack job.π Read
via "Security on TechRepublic".
TechRepublic
Tech news roundup: HPE Discover 2019, Facebook's Libra cryptocurrency, and Google Cloud's debacle
This week's TechRepublic and ZDNet news stories include a look at the companies that hire the most data scientists, four significant impacts of a security breach, and a first-hand account of a major hack job.
π How AI-enhanced malware poses a threat to your organization π
π Read
via "Security on TechRepublic".
Malware controlled by artificial intelligence could create more convincing spam, avoid security detection, and better adapt itself to each target, says a new report from Malwarebytes.π Read
via "Security on TechRepublic".
TechRepublic
How AI-enhanced malware poses a threat to your organization
Malware controlled by artificial intelligence could create more convincing spam, avoid security detection, and better adapt itself to each target, says a new report from Malwarebytes.
π Tech news roundup: HPE Discover 2019, Facebook's Libra cryptocurrency, and Google Cloud's debacle π
π Read
via "Security on TechRepublic".
This week's TechRepublic and ZDNet news stories include a look at the companies that hire the most data scientists, four significant impacts of a security breach, and a first-hand account of a major hack job.π Read
via "Security on TechRepublic".
TechRepublic
Tech news roundup: HPE Discover 2019, Facebook's Libra cryptocurrency, and Google Cloud's debacle
This week's TechRepublic and ZDNet news stories include a look at the companies that hire the most data scientists, four significant impacts of a security breach, and a first-hand account of a major hack job.
π΄ 6 Security Tips That'll Keep the Summer Fun π΄
π Read
via "Dark Reading: ".
Taking some time off this summer? Before you head out on vacation, make sure your devices and apps are also ready.π Read
via "Dark Reading: ".
Dark Reading
6 Security Tips That'll Keep the Summer Fun
Taking some time off this summer? Before you head out on vacation, make sure your devices and apps are also ready.