πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
@cibsecurity
25.8K subscribers
89.2K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
About
Blog
Apps
Platform
Join
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
25.8K subscribers
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14879

The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().

πŸ“– Read

via "National Vulnerability Database".
35 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14470

The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().

πŸ“– Read

via "National Vulnerability Database".
35 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14469

The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14468

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14467

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14466

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14465

The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14464

The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().

πŸ“– Read

via "National Vulnerability Database".
33 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14463

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print().

πŸ“– Read

via "National Vulnerability Database".
31 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14462

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14462

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().

πŸ“– Read

via "National Vulnerability Database".
32 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-14461

The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().

πŸ“– Read

via "National Vulnerability Database".
34 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-10105

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).

πŸ“– Read

via "National Vulnerability Database".
37 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
ATENTIONβ€Ό New - CVE-2018-10103

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).

πŸ“– Read

via "National Vulnerability Database".
38 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ•΄ American Express Insider Breaches Security πŸ•΄

The ex-employee accessed cardholder personal information in an apparent attempt to commit fraud.

πŸ“– Read

via "Dark Reading: ".
Dark Reading
Cyberattacks & Data Breaches recent news | Dark Reading
Explore the latest news and expert commentary on Cyberattacks & Data Breaches, brought to you by the editors of Dark Reading
45 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ•΄ American Express Insider Breaches Cardholder Information πŸ•΄

The ex-employee accessed names, Social Security numbers, card numbers, and more in an attempt to commit fraud.

πŸ“– Read

via "Dark Reading: ".
Darkreading
American Express Insider Breaches Cardholder Information
The ex-employee accessed names, Social Security numbers, card numbers, and more in an attempt to commit fraud.
48 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ•΄ Researchers Link Magecart Group 4 to Cobalt Group πŸ•΄

Their findings demonstrate how Group 4 is likely conducting server-side skimming in addition to client-side activity.

πŸ“– Read

via "Dark Reading: ".
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading
50 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ” How to create and export a GPG keypair on macOS πŸ”

Find out how to create and export a GPG keypair from the macOS command line.

πŸ“– Read

via "Security on TechRepublic".
TechRepublic
How to create and export a GPG keypair on macOS | TechRepublic
Find out how to create and export a GPG keypair from the macOS command line.
56 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ” How to create and export a GPG keypair on macOS πŸ”

Find out how to create and export a GPG keypair from the macOS command line.

πŸ“– Read

via "Security on TechRepublic".
TechRepublic
How to create and export a GPG keypair on macOS | TechRepublic
Find out how to create and export a GPG keypair from the macOS command line.
55 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
πŸ•΄ Facebook Patches Critical WhatsApp Security Flaw πŸ•΄

Bug gives attackers a way to use GIF images to steal data from Android devices running the message app.

πŸ“– Read

via "Dark Reading: ".
Dark Reading
Facebook Patches Critical WhatsApp Security Flaw
Bug gives attackers a way to use GIF images to steal data from Android devices running the message app.
63 views
πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
❌ New Reductor Malware Hijacks HTTPS Traffic ❌

Dubbed Reductor, this malware can manipulate HTTPS traffic by tweaking a browser’s random numbers generator.

πŸ“– Read

via "Threatpost".
Threat Post
New Reductor Malware Hijacks HTTPS Traffic
Dubbed Reductor, this malware can manipulate HTTPS traffic by tweaking a browser’s random numbers generator.
70 views