Está aqui

Infosec News 20200221

Publicado: Sex, 21/02/2020 - 13:48

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

GDPR Protection Will Continue After Google’s US Data Move, Says Lawyer

"Google is unlikely to be moving UK users’ data to the US because of Brexit-related uncertainty and GDPR privacy rights will continue to be protected after any such move, according to a leading data protection lawyer."

Link

TLP¹ : Green

ToTok chat app tells users to ignore Google’s spyware warning

"Video chat app ToTok has been removed from the official Android and iOS app stores by Google and Apple respectively, following growing concerns that it was actually helping the government of the United Arab Emirates spy on users’ conversations and location."

Link

TLP¹ : Green

Policy vs Technology

"Technologists tend to look at more general use cases, like the overall value of strong encryption to societal security. Policy tends to focus on the past, making existing systems work or correcting wrongs that have happened."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

U.S. Department of Defense Disclosed Data Breach at DISA

"The U.S. Department of Defense (DoD) warned that a data breach at the Defense Information Systems Agency (DISA) might have compromised some individuals’ personal information."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

Remove Akamaihd Mac virus from Safari, Chrome, Firefox

"The Mac malware landscape is full of inconsistencies and hybrid characteristics blurring the legit and outright shady entities into a vicious, undrainable cocktail."

Link

TLP¹ : Green

TP-LINK TL-WA850RE 5 /data/syslog.filter.json type memory corruption

"A vulnerability, which was classified as critical, has been found in TP-LINK TL-WA850RE 5 (Router Operating System)."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

Adama - Searches For Threat Hunting And Security Analytics

"A collection of known log and / or event data searches for threat hunting and detection. They enumerate sets of searches used across many different data pipelines."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

SUDO_KILLER - A Tool To Identify And Exploit Sudo Rules' Misconfigurations And Vulnerabilities Within Sudo

"SUDO_KILLER is a tool that can be used for privilege escalation on linux environment by abusing SUDO in several ways. The tool helps to identify misconfiguration within sudo rules, vulnerability within the version of sudo being used (CVEs and vulns) and the use of dangerous binary, all of these could be abused to elevate privilege to ROOT."

Link

TLP¹ : Green

ATM Penetration Testing – Advanced Testing Methods to Find The Vulnerabilities

"ATM Penetration testing, Hackers have found different approaches to hack into the ATM machines."

Link

TLP¹ : Green

ObliqueRAT: New RAT hits victims' endpoints via malicious documents

"Cisco Talos has observed a malware campaign that utilizes malicious Microsoft Office documents (maldocs) to spread a remote access trojan (RAT) we're calling "ObliqueRAT."

Link

TLP¹ : Green

Devo Rolls Out SIEM Solution with Advanced Analytics, Automation

"With Devo Security Operations, the company looks to fill organizations' need for more automation, orchestration and analytics from their SIEM solution."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing: