Security and Windows TCO
-
LWN ☛ Security updates for Friday
Security updates have been issued by Debian (kernel, linux-5.10, php-phpseclib, php-phpseclib3, and phpseclib), Fedora (openssh and tinyxml), Gentoo (FreeRDP and Prometheus SNMP Exporter), Mageia (packages), Red Hat (openssl), SUSE (gstreamer-plugins-rs and python-django-grappelli), and Ubuntu (dotnet6, dotnet7, dotnet8, openssh, and xerces-c).
-
Twisted Framework Vulnerability Risks Ubuntu LTS Users
In a striking revelation, a security vulnerability has been identified in the network programming framework, Twisted, leaving Ubuntu 20.04 LTS and Ubuntu 22.04 LTS users potentially exposed to risk. The flaw, arising from the improper escaping of host headers in specific 404 error responses, could possibly pave the way for a remote attacker to execute HTML and script injection attacks.
-
Security Week ☛ CISA Urges Patching of Exploited SharePoint Server Vulnerability
CISA has added a critical Abusive Monopolist Microsoft SharePoint Server flaw (CVE-2023-29357) to its Known Exploited Vulnerabilities catalog.
-
[Repeat] Silicon Angle ☛ Fidelity National Financial discloses cyberattack previously linked to ransomware gang
Insurance and settlement service giant Fidelity National Financial Inc. has officially disclosed that they suffered from a “cybersecurity incident” that the infamous ransomware gang ALHPV/BlackCat claimed responsibility for in November.
-
Securepairs ☛ Robot Vacuum Lands CES “Worst In Show” For Security
A robot vacuum cleaner manufactured by the China-based firm Ecovacs was awarded the "Worst in Show" for security at this year's Consumer Electronics Show (CES) in Las Vegas.
-
Security Week ☛ Mandiant Details How Its X Account Was Hacked
Mandiant’s X account was hacked as a result of a brute force attack as part of a cryptocurrency scheme that earned at least $900k.
-
Security Week ☛ Cisco Patches Critical Vulnerability in Unity Connection Product
Cisco Unity Connection flaw could allow remote, unauthenticated attackers to upload arbitrary files and execute commands on the system.
-
Security Week ☛ Intel, AMD, Zoom, Splunk Release Patch Tuesday Security Advisories
Intel, AMD, Zoom and Splunk released security advisories on Patch Tuesday to inform customers about vulnerabilities found in their products.
-
Security Week ☛ China-Linked Volt Typhoon Hackers Possibly Targeting Australian, UK Governments
Chinese APT Volt Typhoon appears engaged in new attacks against government entities in the US, UK, and Australia.
-
Security Week ☛ Researchers Flag FBot Hacking Tool Hijacking Cloud, Payment Services
The tool, called FBot, is capable of credential harvesting for spamming attacks, and AWS, PayPal and SaaS account hijacking.
-
Silicon Angle ☛ FBot malware emerges as significant threat to cloud and payment services
A new report released today by SentinelLabs, the research arm of listed cybersecurity company SentinelOne Inc., is warning of a new sophisticated Python-based malware targeting cloud and payment services.
-
Scoop News Group ☛ White House moves to ease education requirements for federal cyber contracting jobs
National Cyber Director Harry Coker wants to see a more diverse cybersecurity workforce.
-
Scoop News Group ☛ NIST researchers warn of top Hey Hi (AI) security threats
State and local governments are among the organizations threatened by various exploits against Hey Hi (AI) systems, according to a recent paper.
-
OpenSSF (Linux Foundation) ☛ Submit to Speak at SOSS Community Day North America 2024
We are thrilled to announce that the OpenSSF is hosting SOSS Community Day North America 2024, on April 15, 2024 in Seattle, Washington. This is a one day event co-located with Open Source Summit North America dedicated to Securing Open Source Software (SOSS). The call for proposal (CFP) to speak is currently open.
-
SANS ☛ One File, Two Payloads, (Fri, Jan 12th)
It has been a while since I discussed obfuscation techniques in malicious scripts. I found a VB script that pretends to be a PDF file. As usual, it was delivered through a phishing email with a zip archive.