🕴 Pentagon Leaks Emphasize the Need for a Trusted Workforce 🕴
📖 Read
via "Dark Reading".
Tightening access controls and security clearance alone won't prevent insider threat risks motivated by lack of trust or loyalty.📖 Read
via "Dark Reading".
Dark Reading
Pentagon Leaks Emphasize the Need for a Trusted Workforce
Tightening access controls and security clearance alone won't prevent insider threat risks motivated by lack of trust or loyalty.
‼ CVE-2023-30196 ‼
📖 Read
via "National Vulnerability Database".
Prestashop salesbooster <= 1.10.4 is vulnerable to Incorrect Access Control via modules/salesbooster/downloads/download.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2650 ‼
📖 Read
via "National Vulnerability Database".
Issue summary: Processing some specially crafted ASN.1 object identifiers ordata containing them may be very slow.Impact summary: Applications that use OBJ_obj2txt() directly, or use any ofthe OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no messagesize limit may experience notable to very long delays when processing thosemessages, which may lead to a Denial of Service.An OBJECT IDENTIFIER is composed of a series of numbers - sub-identifiers -most of which have no size limit. OBJ_obj2txt() may be used to translatean ASN.1 OBJECT IDENTIFIER given in DER encoding form (using the OpenSSLtype ASN1_OBJECT) to its canonical numeric text form, which are thesub-identifiers of the OBJECT IDENTIFIER in decimal form, separated byperiods.When one of the sub-identifiers in the OBJECT IDENTIFIER is very large(these are sizes that are seen as absurdly large, taking up tens or hundredsof KiBs), the translation to a decimal number in text may take a very longtime. The time complexity is O(n^2) with 'n' being the size of thesub-identifiers in bytes (*).With OpenSSL 3.0, support to fetch cryptographic algorithms using names /identifiers in string form was introduced. This includes using OBJECTIDENTIFIERs in canonical numeric text form as identifiers for fetchingalgorithms.Such OBJECT IDENTIFIERs may be received through the ASN.1 structureAlgorithmIdentifier, which is commonly used in multiple protocols to specifywhat cryptographic algorithm should be used to sign or verify, encrypt ordecrypt, or digest passed data.Applications that call OBJ_obj2txt() directly with untrusted data areaffected, with any version of OpenSSL. If the use is for the mere purposeof display, the severity is considered low.In OpenSSL 3.0 and newer, this affects the subsystems OCSP, PKCS7/SMIME,CMS, CMP/CRMF or TS. It also impacts anything that processes X.509certificates, including simple things like verifying its signature.The impact on TLS is relatively low, because all versions of OpenSSL have a100KiB limit on the peer's certificate chain. Additionally, this onlyimpacts clients, or servers that have explicitly enabled clientauthentication.In OpenSSL 1.1.1 and 1.0.2, this only affects displaying diverse objects,such as X.509 certificates. This is assumed to not happen in such a waythat it would cause a Denial of Service, so these versions are considerednot affected by this issue in such a way that it would be cause for concern,and the severity is therefore considered low.📖 Read
via "National Vulnerability Database".
👍2
‼ CVE-2023-2981 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, has been found in Abstrium Pydio Cells 4.2.0. This issue affects some unknown processing of the component Chat. The manipulation leads to basic cross site scripting. The attack may be initiated remotely. Upgrading to version 4.2.1 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-230213 was assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
🕴 9M Dental Patients Affected by LockBit Attack on MCNA 🕴
📖 Read
via "Dark Reading".
The government-sponsored dental and oral healthcare provider warned its customers that a March attack exposed sensitive data, some of which was leaked online by the ransomware group.📖 Read
via "Dark Reading".
Dark Reading
9M Dental Patients Affected by LockBit Attack on MCNA
The government-sponsored dental and oral healthcare provider warned its customers that a March attack exposed sensitive data, some of which was leaked online by the ransomware group.
👍1
🛠 OpenSSL Toolkit 3.0.9 🛠
📖 Read
via "Packet Storm Security".
OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.📖 Read
via "Packet Storm Security".
Packetstormsecurity
OpenSSL Toolkit 3.0.9 ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
🕴 Undetected Attacks Against Middle East Targets Conducted Since 2020 🕴
📖 Read
via "Dark Reading".
Targeted attacks against Saudi Arabia and other Middle East nations have been detected with a tool that's been in the wild since 2020.📖 Read
via "Dark Reading".
Dark Reading
Undetected Attacks Against Middle East Targets Conducted Since 2020
Targeted attacks against Saudi Arabia and other Middle East nations have been detected with a tool that's been in the wild since 2020.
⚠ Serious Security: Verification is vital – examining an OAUTH login bug ⚠
📖 Read
via "Naked Security".
What good is a popup asking for your approval if an attacker can bypass it simply by suprpessing it?📖 Read
via "Naked Security".
‼ CVE-2022-4240 ‼
📖 Read
via "National Vulnerability Database".
Missing Authentication for Critical Function vulnerability in Honeywell OneWireless allows Authentication Bypass. This issue affects OneWireless version 322.1📖 Read
via "National Vulnerability Database".
👍1
‼ CVE-2023-24568 ‼
📖 Read
via "National Vulnerability Database".
Dell NetWorker, contains an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port which could disallow replacing CA signed certificates.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-23754 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33656 ‼
📖 Read
via "National Vulnerability Database".
A memory leak vulnerability exists in NanoMQ 0.17.2. The vulnerability is located in the file message.c. An attacker could exploit this vulnerability to cause a denial of service attack by causing the program to consume all available memory resources.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2968 ‼
📖 Read
via "National Vulnerability Database".
A remote attacker can trigger a denial of service in the socket.remoteAddress variable, by sending a crafted HTTP request. Usage of the undefined variable raises a TypeError exception.📖 Read
via "National Vulnerability Database".
🕴 421M Spyware Apps Downloaded Through Google Play 🕴
📖 Read
via "Dark Reading".
A Trojan SDK snuck past Google Play protections to infest 101 Android applications, bent on exfiltrating infected device data.📖 Read
via "Dark Reading".
Dark Reading
421M Spyware Apps Downloaded Through Google Play
A Trojan SDK snuck past Google Play protections to infest 101 Android applications, bent on exfiltrating infected device data.
🕴 Human-Assisted CAPTCHA-Cracking Services Supercharge Shopper Bots 🕴
📖 Read
via "Dark Reading".
On-demand human solvers are now augmenting automated website cyberattacks, offering a better way around tougher anti-bot puzzles.📖 Read
via "Dark Reading".
Dark Reading
Human-Assisted CAPTCHA-Cracking Services Supercharge Shopper Bots
On-demand human solvers are now augmenting automated website cyberattacks, offering a better way around tougher anti-bot puzzles.
‼ CVE-2023-32218 ‼
📖 Read
via "National Vulnerability Database".
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29734 ‼
📖 Read
via "National Vulnerability Database".
An issue found in edjing Mix v.7.09.01 for Android allows unauthorized apps to cause escalation of privilege attacks by manipulating the database.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2932 ‼
📖 Read
via "National Vulnerability Database".
Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33962 ‼
📖 Read
via "National Vulnerability Database".
JStachio is a type-safe Java Mustache templating engine. Prior to version 1.0.1, JStachio fails to escape single quotes `'` in HTML, allowing an attacker to inject malicious code. This vulnerability can be exploited by an attacker to execute arbitrary JavaScript code in the context of other users visiting pages that use this template engine. This can lead to various consequences, including session hijacking, defacement of web pages, theft of sensitive information, or even the propagation of malware.Version 1.0.1 contains a patch for this issue. To mitigate this vulnerability, the template engine should properly escape special characters, including single quotes. Common practice is to escape `'` as `'`. As a workaround, users can avoid this issue by using only double quotes `"` for HTML attributes.📖 Read
via "National Vulnerability Database".
♟️ Discord Admins Hacked by Malicious Bookmarks ♟️
📖 Read
via "Krebs on Security".
A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark.📖 Read
via "Krebs on Security".
Krebs on Security
Discord Admins Hacked by Malicious Bookmarks
A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark.
🕴 Spotlight on 2023 Dan Kaminsky Fellow: Dr. Gus Andrews 🕴
📖 Read
via "Dark Reading".
As the second Kaminsky Fellow, Dr. Andrews will study the use of threat intelligence to track campaigns against the human rights community.📖 Read
via "Dark Reading".
Dark Reading
Spotlight on 2023 Dan Kaminsky Fellow: Dr. Gus Andrews
As the second Kaminsky Fellow, Andrews will study the use of threat intelligence to track campaigns against the human rights community.
❤1