Vulnerabilidad en UIoT de HPE
Fecha de publicación: 08/07/2019
Importancia: 4 - Alta
Recursos afectados:
HPE Universal Internet of Things (UIoT), versiones:
1.6;
1.5;
1.4.2;
1.4.1;
1.4.0;
1.2.4.2.
Descripción:
HPE ha detectado una vulnerabilidad de criticidad alta en múltiples versiones de UIoT.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-uiot-hpe
Fecha de publicación: 08/07/2019
Importancia: 4 - Alta
Recursos afectados:
HPE Universal Internet of Things (UIoT), versiones:
1.6;
1.5;
1.4.2;
1.4.1;
1.4.0;
1.2.4.2.
Descripción:
HPE ha detectado una vulnerabilidad de criticidad alta en múltiples versiones de UIoT.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-uiot-hpe
INCIBE-CERT
Vulnerabilidad en UIoT de HPE
HPE ha detectado una vulnerabilidad de criticidad alta en múltiples versiones de UIoT.
Vulnerabilidad en 3PAR Service Processor de HPE
Fecha de publicación:09/07/2019
Importancia: Crítica
Recursos afectados:
HPE 3PAR Service Processor (SP), versiones desde la 4.1 hasta la 4.4.
Descripción:
HPE ha detectado una vulnerabilidad de severidad crítica en múltiples versiones de 3PAR Service Processor que podría permitir la interrupción de la confidencialidad, integridad y disponibilidad.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-3par-service-processor-hpe
Fecha de publicación:09/07/2019
Importancia: Crítica
Recursos afectados:
HPE 3PAR Service Processor (SP), versiones desde la 4.1 hasta la 4.4.
Descripción:
HPE ha detectado una vulnerabilidad de severidad crítica en múltiples versiones de 3PAR Service Processor que podría permitir la interrupción de la confidencialidad, integridad y disponibilidad.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-3par-service-processor-hpe
INCIBE-CERT
Vulnerabilidad en 3PAR Service Processor de HPE
HPE ha detectado una vulnerabilidad de severidad crítica en múltiples versiones de 3PAR Service Processor que podría permitir la interrupción de la confidencialidad, integridad y disponibilidad.
Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!
A vulnerability in the Mac Zoom Client allows any malicious website to enable your camera without your permission. The flaw potentially exposes up to 750,000 companies around the world that use Zoom to conduct day-to-day business.
https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5
A vulnerability in the Mac Zoom Client allows any malicious website to enable your camera without your permission. The flaw potentially exposes up to 750,000 companies around the world that use Zoom to conduct day-to-day business.
https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5
Medium
Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!
Vulnerability in the Mac Zoom Client allows any malicious website to enable your camera without your permission. The flaw potentially…
Este nuevo ataque #phishing permite bypassear 2FA
https://www.seguridadapple.com/2019/07/este-nuevo-ataque-phishing-permite.html
https://www.seguridadapple.com/2019/07/este-nuevo-ataque-phishing-permite.html
Seguridadapple
Este nuevo ataque phishing permite bypassear 2FA
Desde hace unos años los dobles factores de autenticación nos han ayudado a proteger nuestra identidad digital de una forma rápida y sencil...
Security Updates Released for #Adobe Bridge, Dreamweaver, and AEM
Adobe has published their monthly Patch Tuesday updates for the month of May 2019. These updates includes fixes for vulnerabilities in Adobe Bridge CC, Adobe Experience Manager, and Adobe Dreamweaver.
https://www.bleepingcomputer.com/news/security/security-updates-released-for-adobe-bridge-dreamweaver-and-aem/
Adobe has published their monthly Patch Tuesday updates for the month of May 2019. These updates includes fixes for vulnerabilities in Adobe Bridge CC, Adobe Experience Manager, and Adobe Dreamweaver.
https://www.bleepingcomputer.com/news/security/security-updates-released-for-adobe-bridge-dreamweaver-and-aem/
BleepingComputer
Security Updates Released for Adobe Bridge, Dreamweaver, and AEM
Adobe has published their monthly Patch Tuesday updates for the month of May 2019. These updates includes fixes for vulnerabilities in Adobe Bridge CC, Adobe Experience Manager, and Adobe Dreamweaver.
Over 1,300 #Android Apps Caught Collecting Data Even If You Deny Permissions
Smartphones are a goldmine of sensitive data, and modern apps work as diggers that continuously collect every possible information from your devices.
https://thehackernews.com/2019/07/android-permission-bypass.html
Smartphones are a goldmine of sensitive data, and modern apps work as diggers that continuously collect every possible information from your devices.
https://thehackernews.com/2019/07/android-permission-bypass.html
#Microsoft Discovers #Fileless Astaroth #Trojan Campaign
A fileless malware campaign used by attackers to drop the information stealing Astaroth Trojan into the memory of infected computers was detected by Microsoft Defender ATP Research Team researchers.
https://www.bleepingcomputer.com/news/security/microsoft-discovers-fileless-astaroth-trojan-campaign/
A fileless malware campaign used by attackers to drop the information stealing Astaroth Trojan into the memory of infected computers was detected by Microsoft Defender ATP Research Team researchers.
https://www.bleepingcomputer.com/news/security/microsoft-discovers-fileless-astaroth-trojan-campaign/
BleepingComputer
Microsoft Discovers Fileless Astaroth Trojan Campaign
A fileless malware campaign used by attackers to drop the information stealing Astaroth Trojan into the memory of infected computers was detected by Microsoft Defender ATP Research Team researchers.
Unpatched Prototype Pollution Flaw Affects All Versions of Popular #Lodash Library
Lodash, a popular npm library used by more than 4 million projects on GitHub alone, is affected by a high severity security vulnerability that could allow attackers to compromise the security of affected services using the library and their respective user base.
https://thehackernews.com/2019/07/lodash-prototype-pollution.html
Lodash, a popular npm library used by more than 4 million projects on GitHub alone, is affected by a high severity security vulnerability that could allow attackers to compromise the security of affected services using the library and their respective user base.
https://thehackernews.com/2019/07/lodash-prototype-pollution.html
Four Ways The Bad Guys Attack #Mobile Devices
Network based attacks
Device exploits
Phishing attacks
Malicious apps
https://blog.zimperium.com/not-fathers-endpoint-four-ways-bad-guys-attack-mobile-devices/
Network based attacks
Device exploits
Phishing attacks
Malicious apps
https://blog.zimperium.com/not-fathers-endpoint-four-ways-bad-guys-attack-mobile-devices/
Zimperium
It’s Not Your Father’s Endpoint - Four Ways The Bad Guys Attack Mobile Devices - Zimperium
In our second blog, I discussed why a mobile device needs to be protected. Exactly what are we talking about here? What are the ways an attacker can hack
Changes to Ticket-Granting Ticket (TGT) Delegation Across Trusts in #Windows Server (PFE edition)
https://techcommunity.microsoft.com/t5/Premier-Field-Engineering/Changes-to-Ticket-Granting-Ticket-TGT-Delegation-Across-Trusts/ba-p/440283
https://techcommunity.microsoft.com/t5/Premier-Field-Engineering/Changes-to-Ticket-Granting-Ticket-TGT-Delegation-Across-Trusts/ba-p/440283
TECHCOMMUNITY.MICROSOFT.COM
Core Infrastructure and Security Blog
Dismantling a #fileless campaign: #Microsoft Defender #ATP next-gen protection exposes #Astaroth attack
Microsoft Defender ATP Research Team
https://www.microsoft.com/security/blog/2019/07/08/dismantling-a-fileless-campaign-microsoft-defender-atp-next-gen-protection-exposes-astaroth-attack/
Microsoft Defender ATP Research Team
https://www.microsoft.com/security/blog/2019/07/08/dismantling-a-fileless-campaign-microsoft-defender-atp-next-gen-protection-exposes-astaroth-attack/
Microsoft News
Dismantling a fileless campaign: Microsoft Defender ATP’s Antivirus exposes Astaroth attack
Advanced technologies in Microsoft Defender ATP's Antivirus exposed and defeated a widespread fileless campaign that completely “lived off the land” throughout a complex attack chain that run the info-stealing backdoor Astaroth directly in memory
Vulnerabilidad en Intel® Processor Diagnostic Tool
Fecha de publicación: 10/07/2019
Importancia: 4 - Alta
Recursos afectados:
Intel® Processor Diagnostic Tool para 32-bit, versiones anteriores a la 4.1.2.24_32bit.
Intel® Processor Diagnostic Tool para 64-bit, versiones anteriores a la 4.1.2.24_64bit.
Descripción:
Se ha publicado una vulnerabilidad en Intel® Processor Diagnostic Tool que podría permitir a un atacante la escalada de privilegios, la denegación de servicio o la divulgación de información.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-intelr-processor-diagnostic-tool
Fecha de publicación: 10/07/2019
Importancia: 4 - Alta
Recursos afectados:
Intel® Processor Diagnostic Tool para 32-bit, versiones anteriores a la 4.1.2.24_32bit.
Intel® Processor Diagnostic Tool para 64-bit, versiones anteriores a la 4.1.2.24_64bit.
Descripción:
Se ha publicado una vulnerabilidad en Intel® Processor Diagnostic Tool que podría permitir a un atacante la escalada de privilegios, la denegación de servicio o la divulgación de información.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-intelr-processor-diagnostic-tool
INCIBE-CERT
Vulnerabilidad en Intel® Processor Diagnostic Tool
Se ha publicado una vulnerabilidad en Intel® Processor Diagnostic Tool que podría permitir a un atacante la escalada de privilegios, la denegación de servicio o la divulgación de información.
Actualización de seguridad de SAP de julio de 2019
Fecha de publicación: 10/07/2019
Importancia: 5 - Crítica
Recursos afectados:
SAP Diagnostic Agent (LM-Service), versión 7.20.
Tests de SAP NetWeaver Process Integration ABAP (SAP Basis), versiones 7.0, 7.1, 7.3, 7.31, 7.4 y 7.5.
SAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM), versiones 6.3, 6.4, 6.5, 6.6, 6.7, 1808 y 1811.
OpenUI5, versiones anteriores e incluyendo 1.38.39, 1.44.39, 1.52.25, 1.60.6 y 1.63.0.
SAP Information Steward, versión 4.2.
ABAP Server y ABAP Platform (SAP Basis), versiones 7.31, 7.4 y 7.5.
SAP BusinessObjects Business Intelligence Platform (BI Workspace) (Enterprise), versiones 4.1, 4.2 y 4.3.
SAP NetWeaver para Java Application Server (Web Container), versiones de engineapi (7.1, 7.2, 7.3, 7.31, 7.4 y 7.5) y de servercode (7.2, 7.3, 7.31, 7.4 y 7.5).
SAP ERP HCM (SAP_HRCES), versión 3.
SAP NetWeaver Application Server para Java (Startup Framework), versiones 7.21, 7.22, 7.45, 7.49, y 7.53.
SAP Gateway, versiones 7.5, 7.51, 7.52 y 7.53.
Descripción:
SAP ha publicado varias actualizaciones de seguridad de diferentes productos en su comunicado mensual.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/actualizacion-seguridad-sap-julio-2019
Fecha de publicación: 10/07/2019
Importancia: 5 - Crítica
Recursos afectados:
SAP Diagnostic Agent (LM-Service), versión 7.20.
Tests de SAP NetWeaver Process Integration ABAP (SAP Basis), versiones 7.0, 7.1, 7.3, 7.31, 7.4 y 7.5.
SAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM), versiones 6.3, 6.4, 6.5, 6.6, 6.7, 1808 y 1811.
OpenUI5, versiones anteriores e incluyendo 1.38.39, 1.44.39, 1.52.25, 1.60.6 y 1.63.0.
SAP Information Steward, versión 4.2.
ABAP Server y ABAP Platform (SAP Basis), versiones 7.31, 7.4 y 7.5.
SAP BusinessObjects Business Intelligence Platform (BI Workspace) (Enterprise), versiones 4.1, 4.2 y 4.3.
SAP NetWeaver para Java Application Server (Web Container), versiones de engineapi (7.1, 7.2, 7.3, 7.31, 7.4 y 7.5) y de servercode (7.2, 7.3, 7.31, 7.4 y 7.5).
SAP ERP HCM (SAP_HRCES), versión 3.
SAP NetWeaver Application Server para Java (Startup Framework), versiones 7.21, 7.22, 7.45, 7.49, y 7.53.
SAP Gateway, versiones 7.5, 7.51, 7.52 y 7.53.
Descripción:
SAP ha publicado varias actualizaciones de seguridad de diferentes productos en su comunicado mensual.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/actualizacion-seguridad-sap-julio-2019
INCIBE-CERT
Actualización de seguridad de SAP de julio de 2019
SAP ha publicado varias actualizaciones de seguridad de diferentes productos en su comunicado mensual.
Boletín de seguridad de Microsoft de julio de 2019
Fecha de publicación: 10/07/2019
Importancia: 5 - Crítica
Recursos afectados:
Microsoft Windows,
Internet Explorer,
Microsoft Edge,
Microsoft Office and Microsoft Office Services and Web Apps,
Azure DevOps,
Open Source Software,
.NET Framework,
Azure,
SQL Server,
ASP.NET,
Visual Studio,
Microsoft Exchange Server.
Descripción:
La publicación de actualizaciones de seguridad de Microsoft correspondiente al mes de julio consta de 75 vulnerabilidades, 15 clasificadas como críticas y 60 como importantes.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/boletin-seguridad-microsoft-julio-2019
Fecha de publicación: 10/07/2019
Importancia: 5 - Crítica
Recursos afectados:
Microsoft Windows,
Internet Explorer,
Microsoft Edge,
Microsoft Office and Microsoft Office Services and Web Apps,
Azure DevOps,
Open Source Software,
.NET Framework,
Azure,
SQL Server,
ASP.NET,
Visual Studio,
Microsoft Exchange Server.
Descripción:
La publicación de actualizaciones de seguridad de Microsoft correspondiente al mes de julio consta de 75 vulnerabilidades, 15 clasificadas como críticas y 60 como importantes.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/boletin-seguridad-microsoft-julio-2019
INCIBE-CERT
Boletín de seguridad de Microsoft de julio de 2019
La publicación de actualizaciones de seguridad de Microsoft correspondiente al mes de julio consta de 75 vulnerabilidades, 15 clasificadas como críticas y 60 como importantes.
25 Million #Android Users Infected with Powerful “Agent Smith” #Malware Through Exploiting Several #Mobile #Vulnerabilities
Researchers discovered a new Android malware called “Agent Smith” that infects nearly 25 million mobile users around the globe without letting users know about the malicious activities.
Agent Smith malware activities have a similar appearance of previously reported malware campaigns such as Gooligan, HummingBad, and CopyCat.
https://gbhackers.com/25-million-android-users-infected-agent-smith/
Researchers discovered a new Android malware called “Agent Smith” that infects nearly 25 million mobile users around the globe without letting users know about the malicious activities.
Agent Smith malware activities have a similar appearance of previously reported malware campaigns such as Gooligan, HummingBad, and CopyCat.
https://gbhackers.com/25-million-android-users-infected-agent-smith/
GBHackers On Security
25 Million Android Users Infected with Powerful "Agent Smith" Malware
Researchers discovered a new Android malware called "Agent Smith" that infects nearly 25 million mobile users around the globe.
New eCh0raix #Ransomware Attacking Linux File Storage Servers
A new ransomware strain dubbed eCh0raix targeting Linux based #QNAP Network Attached Storage (NAS) devices. The ransomware intended to infect and encrypt the files using AES encryption.
https://gbhackers.com/qnap-ech0raix-ransomware/
A new ransomware strain dubbed eCh0raix targeting Linux based #QNAP Network Attached Storage (NAS) devices. The ransomware intended to infect and encrypt the files using AES encryption.
https://gbhackers.com/qnap-ech0raix-ransomware/
GBHackers On Security
QNAP - eCh0raix Ransomware Attacking Linux File Storage Servers
A new ransomware strain dubbed eCh0raix targeting Linux based QNAP Network Attached Storage (NAS) devices and encrypt the files using AES encryption.
#Windows #zeroday #exploit being used in a highly targeted attack in Eastern Europe.
https://www.welivesecurity.com/2019/07/10/windows-zero-day-cve-2019-1132-exploit/
https://www.welivesecurity.com/2019/07/10/windows-zero-day-cve-2019-1132-exploit/
WeLiveSecurity
Windows zero‑day CVE‑2019‑1132 exploited in targeted attacks
ESET research uncovers a zero-day exploit that leverages a vulnerability in Windows and has been deployed for a surgically targeted attack.
#Apple temporarily disables Walkie Talkie on Apple Watch over eavesdropping concerns
If Walkie Talkie on your Apple Watch isn’t working today, here’s why
https://www.macworld.com/article/3408359/apple-temporarily-disables-walkie-talkie-on-apple-watch-over-eavesdropping-concerns.html
If Walkie Talkie on your Apple Watch isn’t working today, here’s why
https://www.macworld.com/article/3408359/apple-temporarily-disables-walkie-talkie-on-apple-watch-over-eavesdropping-concerns.html
Macworld
Apple temporarily disables Walkie Talkie on Apple Watch over eavesdropping concerns
Apple has temporarily disabled the Walkie Talkie app on the Apple Watch because a security flaw can let outsiders listen to your iPhone without consent.
Múltiples vulnerabilidades en Juniper
Fecha de publicación: 11/07/2019
Importancia: 5 - Crítica
Recursos afectados:
Juniper Networks Junos OS, versiones 12.3, 12.3X48, 14.1X53, 15.1, 15.1X49, 16.1, 16.2, 17.1, 17.2, 17.2X75, 17.3, 17.4, 18.1, 18.2, 18.2X75, 18.3, 18.4 y 19.1;
Steel Belted Radius Carrier Edition versiones 8.4 y 8.5;
Juniper Secure Analytics (JSA) Series;
Junos Space versiones anteriores a 19.2R1.
Para más detalles sobre las versiones afectadas, consultar la sección de referencias.
Descripción:
Juniper ha publicado múltiples vulnerabilidades que afectan a sus productos Juniper Networks Junos OS, Steel Belted Radius Carrier Edition, Juniper Secure Analytics (JSA) Series y Junos Space.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-juniper
Fecha de publicación: 11/07/2019
Importancia: 5 - Crítica
Recursos afectados:
Juniper Networks Junos OS, versiones 12.3, 12.3X48, 14.1X53, 15.1, 15.1X49, 16.1, 16.2, 17.1, 17.2, 17.2X75, 17.3, 17.4, 18.1, 18.2, 18.2X75, 18.3, 18.4 y 19.1;
Steel Belted Radius Carrier Edition versiones 8.4 y 8.5;
Juniper Secure Analytics (JSA) Series;
Junos Space versiones anteriores a 19.2R1.
Para más detalles sobre las versiones afectadas, consultar la sección de referencias.
Descripción:
Juniper ha publicado múltiples vulnerabilidades que afectan a sus productos Juniper Networks Junos OS, Steel Belted Radius Carrier Edition, Juniper Secure Analytics (JSA) Series y Junos Space.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-juniper
INCIBE-CERT
Múltiples vulnerabilidades en Juniper
Juniper ha publicado múltiples vulnerabilidades que afectan a sus productos Juniper Networks Junos OS, Steel Belted Radius Carrier Edition, Juniper Secure Analytics (JSA) Series y Junos Space.