Adobe Patches Critical Code Execution Vulnerability in Flash Player
http://feedproxy.google.com/~r/Securityweek/~3/HRk4yYQChhE/adobe-patches-critical-code-execution-vulnerability-flash-player

Adobe has patched a critical arbitrary code execution vulnerability in Flash Player. This is the only flaw fixed by the software giant this Patch Tuesday.
The vulnerability, tracked as CVE-2020-9746, has been described as a NULL pointer dereference issue.
read more (https://www.securityweek.com/adobe-patches-critical-code-execution-vulnerability-flash-player)

Google warns of severe 'BleedingTooth' Bluetooth flaw in Linux kernel
https://www.zdnet.com/article/google-warns-of-severe-bleedingtooth-bluetooth-flaw-in-linux-kernel/

4 Firefox Features You Should Be Using Right Now - It's FOSS
https://itsfoss.com/firefox-useful-features/

Linux 5.9: Not a game-changer, but a good, solid Linux kernel | ZDNet
https://www.zdnet.com/article/linux-5-9-not-a-game-changer-but-a-good-solid-linux-kernel/

How Intel's Clear Linux Is Competing Against Late-2020 Linux Distributions - Phoronix
https://www.phoronix.com/scan.php?page=article&item=clear-fall-2020&num=1

VirtualBox 6.1.16 Released with Full Support for Linux Kernel 5.9, Various Improvements
https://9to5linux.com/virtualbox-6-1-16-released-with-full-support-for-linux-kernel-5-9-various-improvements

Oracle Releases Another Mammoth Security Patch Update
https://www.darkreading.com/application-security/oracle-releases-another-mammoth-security-patch-update/d/d-id/1339240?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

October's CPU contains 402 patches for vulnerabilities across 29 product sets, many of which are remotely executable without the need for authentication.

Hackers Can Open Doors by Exploiting Vulnerabilities in Hörmann Device
http://feedproxy.google.com/~r/Securityweek/~3/HYscFJpNBO0/hackers-can-open-doors-exploiting-vulnerabilities-h%C3%B6rmann-device

Hackers could remotely open garage doors and gates by exploiting vulnerabilities found in a gateway device made by Hörmann, researchers warned on Wednesday.
read more (https://www.securityweek.com/hackers-can-open-doors-exploiting-vulnerabilities-h%C3%B6rmann-device)

6 Ways Passwords Fail Basic Security Tests
https://www.darkreading.com/threat-intelligence/6-ways-passwords-fail-basic-security-tests/d/d-id/1339299?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

New data shows humans still struggle with password creation and management.

US Government Issues Warning on Kimsuky APT Group
https://www.darkreading.com/threat-intelligence/us-government-issues-warning-on-kimsuky-apt-group/d/d-id/1339310?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

The joint alert, from CISA, the FBI, and others, describes activities from the North Korean advanced persistent threat group.

Breaking the Glass Ceiling: Tough for Women, Tougher for Women of Color
https://www.darkreading.com/careers-and-people/breaking-the-glass-ceiling-tough-for-women-tougher-for-women-of-color/d/d-id/1339311?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

Security practitioners shed light on obstacles limiting career growth and the steps businesses can take to achieve their promises of a more diverse workforce.

What Does Bad Advice Look Like?
http://feedproxy.google.com/~r/Securityweek/~3/hB8WDgGpBC4/what-does-bad-advice-look

Five Angles That One Can Use to Evaluate Whether a Piece of Advice is Good or Bad
read more (https://www.securityweek.com/what-does-bad-advice-look)

Wisconsin Republican Party Says Hackers Stole $2.3 Million
http://feedproxy.google.com/~r/Securityweek/~3/8cfvcVK4bfE/wisconsin-republican-party-says-hackers-stole-23-million

Hackers have stolen $2.3 million from the Wisconsin Republican Party’s account that was being used to help reelect President Donald Trump in the key battleground state, the party’s chairman told The Associated Press on Thursday.
read more (https://www.securityweek.com/wisconsin-republican-party-says-hackers-stole-23-million)

7 powerful ways to increase IT security awareness in your organization
http://techgenix.com/increase-it-security-awareness/

The foundation of effective culture change that bolsters enterprise security and helps avert cyberattacks is a robust IT security awareness program.
The post 7 powerful ways to increase IT security awareness in your organization (http://techgenix.com/increase-it-security-awareness/) appeared first on TechGenix (http://techgenix.com/).

KB-Vuln: 3 Vulnhub Walkthrough
https://www.hackingarticles.in/kb-vuln-3-vulnhub-walkthrough/

Today we are going to solve another boot2root challenge called “KB-VULN: 3”.  It’s available at VulnHub for penetration testing and you can download it from here. The merit of making this lab is due to Machine. Let’s start and learn how to break it down successfully. Level: Eas Penetration Testing Methodology Reconnaissance Netdiscover Nmap Enumeration... Continue reading →
The post KB-Vuln: 3 Vulnhub Walkthrough (https://www.hackingarticles.in/kb-vuln-3-vulnhub-walkthrough/) appeared first on Hacking Articles (https://www.hackingarticles.in/).

Critical OpenEMR Vulnerabilities Give Hackers Remote Access to Health Records
http://feedproxy.google.com/~r/Securityweek/~3/q6KZMKLgpoQ/critical-openemr-vulnerabilities-give-hackers-remote-access-health-records

Several vulnerabilities found by researchers in the OpenEMR software can be exploited by remote hackers to obtain medical records and compromise healthcare infrastructure.
read more (https://www.securityweek.com/critical-openemr-vulnerabilities-give-hackers-remote-access-health-records)

Google Announces New VPN for Google One Customers
http://feedproxy.google.com/~r/Securityweek/~3/I4-N3V5m-78/google-announces-new-vpn-google-one-customers

Google announced on Thursday that Google One customers can now use a new virtual private network (VPN) service that will provide them an extra layer of protection when they go online.
read more (https://www.securityweek.com/google-announces-new-vpn-google-one-customers)

JavaScript Obfuscation Moves to Phishing Emails
https://www.darkreading.com/threat-intelligence/javascript-obfuscation-moves-to-phishing-emails/d/d-id/1339332?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

Attackers are hiding malicious payloads in phishing emails via a technique traditionally used to hide malicious code planted on websites.

Taser : Python3 Resource Library For Creating Security Related Tooling
https://kalilinuxtutorials.com/taser/

TASER (Testing And SEecurity Resource) is a Python resource library used to simplify the process of creating offensive security tooling, especially those relating to web or external assessments. It’s modular design makes it easy for code to be customized and re-purposed in a variety of scenarios. Key Features Easily invoke web spiders or search engine […]
The post Taser : Python3 Resource Library For Creating Security Related Tooling (https://kalilinuxtutorials.com/taser/) appeared first on Kali Linux Tutorials (https://kalilinuxtutorials.com/).

Internet Throttling: What Is It and What You Can Do About It | Tom's Guide
https://www.tomsguide.com/us/internet-throttling-what-to-do,review-5154.html