π΄ CISOs Are Focused on These 3 Trends. Are You? π΄
π Read
via "Dark Reading".
The macro issues shaping the threat landscape can help security pros reset their priorities and reformulate strategy.π Read
via "Dark Reading".
Dark Reading
CISOs Are Focused on These 3 Trends. Are You?
The macro issues shaping the threat landscape can help security pros reset their priorities and reformulate strategy.
π΄ Schneider Electric and BitSight Announce Partnership to Improve Detection of Operational Technology (OT) Cybersecurity Exposure π΄
π Read
via "Dark Reading".
π Read
via "Dark Reading".
Dark Reading
Schneider Electric and BitSight Announce Partnership to Improve Detection of Operational Technology (OT) Cybersecurity Exposure
Rueil-Malmaison, France & Boston β January 9, 2023 β Schneider Electric, the global leader in the digital transformation of energy management and automation, and BitSight, the leader in detecting and managing cyber risk, today announced a strategic partnershipβ¦
βΌ CVE-2023-22473 βΌ
π Read
via "National Vulnerability Database".
Talk-Android enables users to have video & audio calls through Nextcloud on Android. Due to passcode bypass, an attacker is able to access the user's Nextcloud files and view conversations. To exploit this the attacker needs to have physical access to the target's device. There are currently no known workarounds available. It is recommended that the Nextcloud Talk Android app is upgraded to 15.0.2.π Read
via "National Vulnerability Database".
π1
βΌ CVE-2023-22477 βΌ
π Read
via "National Vulnerability Database".
Mercurius is a GraphQL adapter for Fastify. Any users of Mercurius until version 10.5.0 are subjected to a denial of service attack by sending a malformed packet over WebSocket to `/graphql`. This issue was patched in #940. As a workaround, users can disable subscriptions.π Read
via "National Vulnerability Database".
π΄ JsonWebToken Security Bug Opens Servers to RCE π΄
π Read
via "Dark Reading".
The JsonWebToken package plays a big role in the authentication and authorization functionality for many applications.π Read
via "Dark Reading".
Dark Reading
JsonWebToken Security Bug Opens Servers to RCE
The JsonWebToken package plays a big role in the authentication and authorization functionality for many applications.
π΄ 'Copyright Infringement' Lure Used for Facebook Credential Harvesting π΄
π Read
via "Dark Reading".
Business users receive a message from Facebook warning their accounts will be permanently suspended for using photos illegally if they don't appeal within 24 hours, leading victims to a credential-harvesting page instead.π Read
via "Dark Reading".
Dark Reading
'Copyright Infringement' Lure Used for Facebook Credential Harvesting
Business users receive a message from Facebook warning their accounts will be permanently suspended for using photos illegally if they don't appeal within 24 hours, leading victims to a credential-harvesting page instead.
βΌ CVE-2022-46258 βΌ
π Read
via "National Vulnerability Database".
An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed a repository-scoped token with read/write access to modify Action Workflow files without a Workflow scope. The Create or Update file contents API should enforce workflow scope. This vulnerability affected all versions of GitHub Enterprise Server prior to version 3.7 and was fixed in versions 3.3.16, 3.4.11, 3.5.8, and 3.6.4. This vulnerability was reported via the GitHub Bug Bounty program.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47790 βΌ
π Read
via "National Vulnerability Database".
Sourcecodester Dynamic Transaction Queuing System v1.0 is vulnerable to SQL Injection via /queuing/index.php?page=display&id=.π Read
via "National Vulnerability Database".
βΌ CVE-2022-4884 βΌ
π Read
via "National Vulnerability Database".
Path-Traversal in MKP storing in Tribe29 Checkmk <=2.0.0p32 and <= 2.1.0p18 allows an administrator to write mkp files to arbitrary locations via a malicious mkp file.π Read
via "National Vulnerability Database".
π1
π΄ Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone π΄
π Read
via "Dark Reading".
Organizations often defer patching because of business disruption fears β but that didn't work out very well for Rackspace's Hosted Exchange service.π Read
via "Dark Reading".
Dark Reading
Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone
Organizations often defer patching because of business disruption fears β but that didn't work out very well for Rackspace's Hosted Exchange service.
π1
βΌ CVE-2022-36928 βΌ
π Read
via "National Vulnerability Database".
Zoom for Android clients before version 5.13.0 contain a path traversal vulnerability. A third party app could exploit this vulnerability to read and write to the Zoom application data directory.π Read
via "National Vulnerability Database".
βΌ CVE-2022-36927 βΌ
π Read
via "National Vulnerability Database".
Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.π Read
via "National Vulnerability Database".
βΌ CVE-2022-36926 βΌ
π Read
via "National Vulnerability Database".
Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.π Read
via "National Vulnerability Database".
βΌ CVE-2022-36930 βΌ
π Read
via "National Vulnerability Database".
Zoom Rooms for Windows installers before version 5.13.0 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain to escalate their privileges to the SYSTEM user.π Read
via "National Vulnerability Database".
βΌ CVE-2022-36925 βΌ
π Read
via "National Vulnerability Database".
Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged application. That key can then be used to interact with the daemon service to execute privileged functions and cause a local denial of service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-36929 βΌ
π Read
via "National Vulnerability Database".
The Zoom Rooms Installer for Windows prior to 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate their privileges to the SYSTEM user.π Read
via "National Vulnerability Database".
π΄ Serbia Slammed With DDoS Attacks π΄
π Read
via "Dark Reading".
The Serbian government reports that it staved off five attacks aimed at crippling Serbian infrastructure.π Read
via "Dark Reading".
Dark Reading
Serbia Slammed With DDoS Attacks
The Serbian government reports that it staved off five attacks aimed at crippling Serbian infrastructure.
π΄ Attackers Are Already Exploiting ChatGPT to Write Malicious Code π΄
π Read
via "Dark Reading".
The AI-based chatbot is allowing bad actors with absolutely no coding experience to develop malware.π Read
via "Dark Reading".
Dark Reading
Attackers Are Already Exploiting ChatGPT to Write Malicious Code
The AI-based chatbot is allowing bad actors with absolutely no coding experience to develop malware.
βΌ CVE-2015-10034 βΌ
π Read
via "National Vulnerability Database".
A vulnerability has been found in j-nowak workout-organizer and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection. The name of the patch is 13cd6c3d1210640bfdb39872b2bb3597aa991279. It is recommended to apply a patch to fix this issue. VDB-217714 is the identifier assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-43970 βΌ
π Read
via "National Vulnerability Database".
A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A stack-based buffer overflow in the Start_EPI function within the httpd binary allows an authenticated attacker with administrator privileges to execute arbitrary commands on the underlying Linux operating system as root. This vulnerablity can be triggered over the network via a malicious POST request to /apply.cgi.π Read
via "National Vulnerability Database".
βΌ CVE-2022-43973 βΌ
π Read
via "National Vulnerability Database".
An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. The Check_TSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with administrator privileges can leverage this vulnerability over the network via a malicious POST request to /apply.cgi to execute arbitrary commands on the underlying Linux operating system as root.π Read
via "National Vulnerability Database".