Infosec News 20200118

  • Publicado: Seg, 18/01/2021 - 09:55

Top News

  • EMA said that hackers manipulated stolen documents before leaking them

"The European Medicines Agency (EMA) revealed Friday that COVID-19 vaccine documents stolen from its servers have been manipulated before the leak"

Link

TLP1 : Green

  • Facebook Takes Legal Action Against Data Scrapers

"In a lawsuit filed in Portugal, Facebook Inc. and Facebook Ireland seek permanent injunction against the two for violation of the social media platform’s terms of service and Portugal’s Database Protection Law."

Link

TLP1 : Green

  • Joker’s Stash, the largest carding marketplace, will shut down next month

"Operators behind Joker’s Stash, the largest dark web marketplace specializing in buying and selling carding data, announced they plan to shut down the site on February 15th, 2021"

Link

TLP1 : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

  • Ransomware reveals the hidden weakness of our big tech world

"The flaws we have long overlooked are the ones that ransomware has exploited to brutal impact"

Link

TLP1 : Green

  • Rob Joyce Appointed Director of Cybersecurity at NSA

"The U.S. National Security Agency on Friday announced that Rob Joyce, an official who is highly respected in the cybersecurity community, has been named the agency’s new director of cybersecurity."

Link

TLP1 : Green

  • Cell Phone Location Privacy

"We all know that our cell phones constantly give our location away to our mobile network operators; that’s how they work. A group of researchers has figured out a way to fix that. “Pretty Good Phone Privacy” (PGPP) protects both user identity and user location using the existing cellular networks. It protects users from fake cell phone towers (IMSI-catchers) and surveillance by cell providers.."

Link

TLP1 : Green

Breaches: Data Breaches and Hacks

  • Dutch Energy Supplier Blames Cyber Intrusion on Data Breaches Suffered by Other Companies

"Dutch energy supplier Eneco has warned tens of thousands of clients, including business partners, to change their passwords amid a recent data breach"

Link

TLP1 : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

  • K65078159: Apache Tomcat vulnerability CVE-2021-24122

"When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations"

Link

TLP1 : Green

  • Tens of Vulnerabilities in Siemens PLM Products Allow Code Execution

"Siemens this week informed customers that some of its product development solutions are affected by a total of nearly two dozen vulnerabilities that can be exploited for arbitrary code execution using malicious files."

Link

TLP1 : Green

  • Multiple backdoors and vulnerabilities discovered in FiberHome routers

"At least 28 backdoor accounts found in FiberHome FTTH ONT routers"

Link

TLP1 : Green

  • Windows 10 bug crashes your PC when you access this location

"A bug in Windows 10 causes the operating system to crash with a Blue Screen of Death simply by opening a certain path in a browser's address bar or using other Windows commands"

Link

TLP1 : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

  • Responding to a Cyber Security Breach

"Continuing with our compliance theme, Matthew Locker, a Cyber Security Consultant at Apstorm has shared his ideas on how law firms can remain compliant in the modern world"

Link

TLP1 : Green

  • Vulnerability management isn’t working for cloud security: Here’s how to do it right

"Three things in life are seemingly guaranteed: death, taxes and high-profile cloud security breaches. But there is no reason why public cloud or hybrid cloud breaches must remain so stubbornly persistent"

Link

TLP1 : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

  • Malvuln Project Catalogues Vulnerabilities Found in Malware

"A researcher has launched Malvuln, a project that catalogues vulnerabilities discovered in malware and provides information on how those vulnerabilities can be exploited."

Link

TLP1 : Green

  • Prosperoware adds data protection features for Office 365, supports Azure for storage

"Prosperoware announces data protection features for Office 365 including OneDrive, SharePoint Online, Teams, and support Azure for storage location as part of its CAM platform"

Link

TLP1 : Green

  • MyJWT - A Cli For Cracking, Testing Vulnerabilities On Json Web Token (JWT)

"This cli is for pentesters, CTF players, or dev. You can modify your jwt, sign, inject ,etc"

Link

TLP1 : Green

  • ImHex - A Hex Editor For Reverse Engineers

"Programmers and people that value their eye sight when working at 3 AM"

Link

TLP1 : Green

 

 

1Traffic Light Protocol (TLP) [1] for information sharing:

 

 

  • Red:Not for disclosure, restricted to participants only.
  • Amber: Limited disclosure, restricted to participants organizations.
  • Green: Limited disclosure, restricted to the community.

 

[1]https://www.first.org/tlp

Infosec News