Infosec News 20200911

  • Publicado: Sex, 11/09/2020 - 11:27

Top News

  • Zoom introduces two-factor authentication

"Zoom introduces two-factor authentication to boost users' security. With the 2FA, organisations will be able to protect their users' data."

Link

TLP1 : Green

  • "Trump's first TikTok move: A China quagmire of his own making"

"When the president has faced off with China, he often ends up in a jam. And the solution to the TikTok stalemate isn't clear."

Link

TLP1 : Green

  • Facebook May Have to Stop Moving EU User Data to US

"Facebook may be forced to stop sending data about its European users to the U.S., in the first major fallout from a recent court ruling that found some trans-Atlantic data transfers don’t protect users from American government snooping."

Link

TLP1 : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

  • "US Sanctions Russian Attackers for 2020 Election Interference"

"The move comes as Microsoft publishes research on attack groups and activity attempting to target the Biden and Trump campaigns."

Link

TLP1 : Green

  • Colocation data centers giant Equinix data hit by Netwalker Ransomware

"Equinix, one of the world’s largest providers of colocation data centers and Internet connection announced it was hit by Netwalker Ransomware."

Link

TLP1 : Green

  • "Cyber-Risks Explode With Move to Telehealth Services"

"The hasty shift to online delivery of primary care services since the COVID-19 outbreak has attracted significant attacker interest."

Link

TLP1 : Green

Breaches: Data Breaches and Hacks

  • United Airlines’ website bug exposed traveler ticket data

"A bug in United Airlines’ website let anyone access the ticket information for travelers who requested a refund."

Link

TLP1 : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

  • "CVE-2020-24164 Detail"

"A deserialization flaw is present in Taoensso Nippy before 2.14.2. In some circumstances, it is possible for an attacker to create a malicious payload that, when deserialized, will allow arbitrary code to be executed. This occurs because there is automatic use of the Java Serializable interface."

Link

TLP1 : Green

  • Palo Alto Networks Patches Serious DoS, Code Execution Flaws in PAN-OS

" Palo Alto Networks this week announced that it has patched critical and high-severity denial-of-service (DoS) and arbitrary code execution vulnerabilities in its PAN-OS firewall software."

Link

TLP1 : Green

  • Chrome Sandbox Escape Vulnerability Earns Researchers $20,000

" Two researchers have earned $20,000 from Google for reporting a sandbox escape vulnerability affecting the Chrome web browser. The flaw, tracked as CVE-2020-6573, has been described by Google as a high-severity use-after-free bug affecting Chrome’s “video” component."

Link

TLP1 : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

  • The Third Edition of Ross Anderson’s Security Engineering

"Ross Anderson’s fantastic textbook, Security Engineering, will have a third edition. The book won’t be published until December, but Ross has been making drafts of the chapters available online as he finishes them. Now that the book is completed, I expect the publisher to make him take the drafts off the Internet."

Link

TLP1 : Green

  • How early detection helps CISOs reduce incident response time

" In India, where businesses across industries are transforming their traditional ways of operation, the demand for cybersecurity solutions have significantly increased."

Link

TLP1 : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

  • Safety - Check Your Installed Dependencies For Known Security Vulnerabilities

"Safety checks your installed dependencies for known security vulnerabilities.
By default it uses the open Python vulnerability database Safety DB, but can be upgraded to use pyup.io's Safety API using the --key option."

Link

TLP1 : Green

  • Forensic Investigation: Preserve TimeStamp

"As a Digital Forensic Investigator, you might understand, how important it is to preserve timestamps of any evidence gathered at the scene of a crime. You will be on your toes to make sure that the timestamps of the original evidence are never altered at the time of acquisition. This is important as you have to maintain the chain of custody of the evidence."

Link

TLP1 : Green

 

 

1Traffic Light Protocol (TLP) [1] for information sharing:

 

 

  • Red:Not for disclosure, restricted to participants only.
  • Amber: Limited disclosure, restricted to participants organizations.
  • Green: Limited disclosure, restricted to the community.

 

[1]https://www.first.org/tlp

 

Infosec News