RSS Trending Cyber News

  • Celeb Shout-Out App Cameo Exposes Private Videos and User Data
    This article originally appeared on VICE US. Cameo, the increasingly popular app for paying celebrities to record short personal videos, exposed a wealth of user data including email addresses, hashed and salted passwords and phone numbers, and messages via a misconfiguration in its app.
  • Fortinet voegt ruim 350 nieuwe functies toe aan zijn Security Fabric
    Door: Redactie WINMAG Pro Fortinet, wereldwijd leider in uitgebreide, geïntegreerde en geautomatiseerde oplossingen voor cyberbeveiliging, maakt de beschikbaarheid bekend van FortiOS 6.4. Dit is de nieuwe versie van het besturingssysteem dat aan de basis staat van de Fortinet Security Fabric. FortiOS 6.
  • How healthcare CIOs can keep their organisations secure
    For healthcare organisations, the risks and responsibilities associated with cyber security are greater than ever, as patient health data is some of the most valuable on the black market. For CIOs, losing this information to thieves, carelessness or natural disasters is unthinkable in healthcare — and in many cases punishable by a fine.
  • US-Wahlen 2020: Medien: Moskau will laut US-Geheimdiensten Trumps Wahlsieg sichern
    US-Geheimdienste gehen Medienberichten zufolge davon aus, dass sich Russland erneut in den Wahlkampf einmischen will, um Präsident Donald Trump zur Wiederwahl zu verhelfen. Das hätten ranghohe Geheimdienstmitarbeiter Abgeordneten des Repräsentantenhauses in einer vertraulichen Sitzung erklärt,....
  • Eset обеспечивает кибербезопасность европейского медицинского центра «УГМК-здоровье»
    Eset, международный эксперт в сфере кибербезопасности, сообщил о сотрудничестве с европейским медицинским центром «УГМК-здоровье». Для защиты сети компания использует решения Eset Nod32 Smart Security Business Edition, Eset Mail Security и Eset Dynamic Threat Defense.
  • Securing the Human
    Why humans are the weakest element of your cybersecurity program. Cyber risk is top of mind for just about every organization these days. Most financial institutions are getting it right, starting with visibility and support from the top, and a healthy budget dedicated to best-in-class cybersecurity....
  • #SocialSec – Hot takes on this week's biggest cybersecurity news (Feb 14) - The Daily Swig
    #SocialSec – Hot takes on this week’s biggest cybersecurity news (Feb 14) 14 February 2020 at 14:38 UTC Updated: 14 February 2020 at 15:21 UTC. Charges against China over Equifax; the Swiss break their neutrality; and the hackers that continue to shape cybersecurity.
  • StarHub's Q4 profit jumps more than 115%, to pay 80% of profit as dividend
    Singapore operator StarHub saw its fourth-quarter net profit reach SGD 33.3 million, which represents an increase of nearly 115.6 percent year-on-year. For the full year 2019, profit reached SGD 178.6 million, down 10.9 percent from 2018. Full-year total revenue was SGD 2.33 billion, representing a 1.
  • New push on cyber ‘security’ laws
    Worried about online privacy? You should be. Not only are social media corporations spying on you, thanks to Australia’s draconian, poorly-written and over-reaching cyber “security” laws, the government now want to muscle in further on Big Brother’s territory.
  • Looking for a New Year’s Cyber Resolution? Perpetual Vigilance
    . Most people enjoy improvements and innovations when it comes to consumer electronics, but the unfortunate truth is that cybercriminals are innovating and improving their techniques and tactics as well.

RSS Vulnerabilities

  • Vigil@nce - F5 BIG-IP APM: privilege escalation via Edge Client for Windows, analyzed on 06/02/2020
    Synthesis of the vulnerability An attacker can bypass restrictions via Edge Client for Windows of F5 BIG-IP APM, in order to escalate his privileges. Impacted systems: Severity of this alert: 1/4. Creation date: 06/02/2020. Références of this alert: , VIGILANCE-VUL-31535.
  • Root-Sicherheitslücke gefährdet IBM-Datenbank Db2
    Das Datenbanksystem Db2 von IBM ist über vier Sicherheitslücken angreifbar. Auch wenn davon keine als kritisch eingestuft ist, könnten Angreifer unter Umständen Schadcode mit Root-Rechten ausführen. Admins sollten die vorläufigen Fixes zeitnah installieren.
  • Use-after-free in gpgme package for GPGME library
    Security Advisory. This security advisory describes one high risk vulnerability. 1) Use-after-free. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2020-8945. CWE-ID: Description. CWE-416 - Use After Free The vulnerability allows a remote attacker to compromise vulnerable system.
  • Ubuntu update for ppp
    Security Advisory. This security advisory describes one high risk vulnerability. 1) Buffer overflow. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2020-8597. CWE-ID: Description. CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer The vulnerability allows a remote attacker to execute arbitrary code on the target system.
  • Pact with Taliban on reducing violence begins midnight: Afghan official
    Afghan, international and Taliban forces will observe a seven-day period of reduced violence in Afghanistan beginning at midnight (1930 GMT), a senior Afghan official said on Friday. “Based on the plan, the reduction in violence (RIV) will start between the Taliban and international and Afghan....
  • CVE-2020-1938 : Tomcat-Ajp 协议漏洞分析
    报告编号:B6-2020-022101. 报告来源:360-CERT. 报告作者:Hu3sky. 更新日期:2020-02-21 0x01 漏洞背景. 2020年02月20日, 360CERT 监测发现 国家信息安全漏洞共享平台(CNVD) 收录了 Apache Tomcat文件包含漏洞. Tomcat是由Apache软件基金会属下Jakarta项目开发的Servlet容器,按照Sun Microsystems提供的技术规范,实现了对Servlet和JavaServer Page(JSP)的支持。由于Tomcat本身也内含了HTTP服务器,因此也可以视作单独的Web服务器。 配置文件、源代码等。 0x02 影响版本 Apache Tomcat 9.
  • Microsoft patches IE vulnerability being exploited in the wild
    Microsoft issued a patch for an Internet Explorer scripting engine memory corruption vulnerability that could lead remote code execution and that has been detected in the wild. The vulnerability, CVE-2020-0674, carries a CVSS rating of 7.5 and since it has been detected being abused in the wild....
  • Improper Authorization in B&R Industrial Automation Automation Studio and Automation Runtime
    Security Advisory. This security advisory describes one high risk vulnerability. 1) Improper Authorization. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2019-19108. CWE-ID: Description. CWE-285 - Improper Authorization The vulnerability allows an attacker to bypass authorization checks. The vulnerability exists due to a weakness in SNMP service.
  • Multiple vulnerabilities in Honeywell NOTI-FIRE-NET Web Server (NWS-3)
    1) Authentication Bypass by Capture-replay. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2020-6972. CWE-ID: Description. CWE-294 - Authentication Bypass by Capture-replay The vulnerability allows a remote attacker to bypass authentication on the target system.
  • Как успешно пройти любой пентест (вредные советы)
    Представим ситуацию: вы — специалист по информационной безопасности и знаете, что выстроенная вами защита — полная чушь. Возможно, вы этого и не знаете, но проверять особо не желаете, ведь кому хочется выходить из зоны комфорта и дополнительно что-то предпринимать, внедрять средства защиты, смягчать....

RSS Threats and Incidents

  • Vigil@nce - F5 BIG-IP APM: privilege escalation via Edge Client for Windows, analyzed on 06/02/2020
    Synthesis of the vulnerability An attacker can bypass restrictions via Edge Client for Windows of F5 BIG-IP APM, in order to escalate his privileges. Impacted systems: Severity of this alert: 1/4. Creation date: 06/02/2020. Références of this alert: , VIGILANCE-VUL-31535.
  • Root-Sicherheitslücke gefährdet IBM-Datenbank Db2
    Das Datenbanksystem Db2 von IBM ist über vier Sicherheitslücken angreifbar. Auch wenn davon keine als kritisch eingestuft ist, könnten Angreifer unter Umständen Schadcode mit Root-Rechten ausführen. Admins sollten die vorläufigen Fixes zeitnah installieren.
  • Use-after-free in gpgme package for GPGME library
    Security Advisory. This security advisory describes one high risk vulnerability. 1) Use-after-free. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2020-8945. CWE-ID: Description. CWE-416 - Use After Free The vulnerability allows a remote attacker to compromise vulnerable system.
  • Ubuntu update for ppp
    Security Advisory. This security advisory describes one high risk vulnerability. 1) Buffer overflow. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2020-8597. CWE-ID: Description. CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer The vulnerability allows a remote attacker to execute arbitrary code on the target system.
  • Pact with Taliban on reducing violence begins midnight: Afghan official
    Afghan, international and Taliban forces will observe a seven-day period of reduced violence in Afghanistan beginning at midnight (1930 GMT), a senior Afghan official said on Friday. “Based on the plan, the reduction in violence (RIV) will start between the Taliban and international and Afghan....
  • CVE-2020-1938 : Tomcat-Ajp 协议漏洞分析
    报告编号:B6-2020-022101. 报告来源:360-CERT. 报告作者:Hu3sky. 更新日期:2020-02-21 0x01 漏洞背景. 2020年02月20日, 360CERT 监测发现 国家信息安全漏洞共享平台(CNVD) 收录了 Apache Tomcat文件包含漏洞. Tomcat是由Apache软件基金会属下Jakarta项目开发的Servlet容器,按照Sun Microsystems提供的技术规范,实现了对Servlet和JavaServer Page(JSP)的支持。由于Tomcat本身也内含了HTTP服务器,因此也可以视作单独的Web服务器。 配置文件、源代码等。 0x02 影响版本 Apache Tomcat 9.
  • Microsoft patches IE vulnerability being exploited in the wild
    Microsoft issued a patch for an Internet Explorer scripting engine memory corruption vulnerability that could lead remote code execution and that has been detected in the wild. The vulnerability, CVE-2020-0674, carries a CVSS rating of 7.5 and since it has been detected being abused in the wild....
  • Improper Authorization in B&R Industrial Automation Automation Studio and Automation Runtime
    Security Advisory. This security advisory describes one high risk vulnerability. 1) Improper Authorization. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2019-19108. CWE-ID: Description. CWE-285 - Improper Authorization The vulnerability allows an attacker to bypass authorization checks. The vulnerability exists due to a weakness in SNMP service.
  • Multiple vulnerabilities in Honeywell NOTI-FIRE-NET Web Server (NWS-3)
    1) Authentication Bypass by Capture-replay. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2020-6972. CWE-ID: Description. CWE-294 - Authentication Bypass by Capture-replay The vulnerability allows a remote attacker to bypass authentication on the target system.
  • Как успешно пройти любой пентест (вредные советы)
    Представим ситуацию: вы — специалист по информационной безопасности и знаете, что выстроенная вами защита — полная чушь. Возможно, вы этого и не знаете, но проверять особо не желаете, ведь кому хочется выходить из зоны комфорта и дополнительно что-то предпринимать, внедрять средства защиты, смягчать....

RSS Cyber Crime

The first 72 hours after you discover a data breach are critical. Why? The GDPR (General Data Protection...
WALLIX lance WALLIX BestSafe, sa nouvelle ligne de produit dédiée à la protection des postes...
Если требуется вам срочно провести пентест, Вы при этом не хотите по затылку получать, То...
Volgens de Britse ict-beveiliger Sophos blijft fleeceware een hardnekkig probleem in app stores, met name...
A cyber-attack has hit the major facilities company ISS World, which has half a million...
iPhones are being used to ‘flash’ women with sexually explicit selfies flickr Editorial/Getty Images Cases...
A recent survey by Blumberg Capital reveals that a majority of consumers think their IT...
Image: Canva The Friday 5, where we round up our favorite reads from around the...