InfoSec News 20210818
Top News
-
The German state’s data protection agency (DPA) warns that the use of the videoconferencing platform Zoom violates the European Union’s GDPR.
"The German state’s data protection agency (DPA) warns that the Senate Chancellory’s use of the popular videoconferencing tool violates the European Union’s General Data Protection Regulation (GDPR). The DPA is concerned by the transfer of user data to the U.S. for processing."
TLP1 : Green
-
Unpatched Remote Hacking Flaw Disclosed in Fortinet's FortiWeb WAF
"Details have emerged about a new unpatched security vulnerability in Fortinet's web application firewall (WAF) appliances that could be abused by a remote, authenticated attacker to execute malicious commands on the system."
TLP1 : Green
-
Bug in Millions of Flawed IoT Devices Lets Attackers Eavesdrop
"A remote attacker could exploit a critical vulnerability to eavesdrop on live audio & video or take control. The bug is in ThroughTek’s Kalay network, used in 83m devices."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Fake news, scams and extremist views: Should we be concerned about what older family members are doing online?
"What do you do when an older family member shares fake news with you or when you find out they get their news updates from dubious sources? "
TLP1 : Green
-
Iranian Hackers Target Several Israeli Organizations With Supply-Chain Attacks
"IT and communication companies in Israel were at the center of a supply chain attack campaign spearheaded by an Iranian threat actor that involved impersonating the firms and their HR personnel to target victims with fake job offers in an attempt to penetrate their computers and gain access to the company's clients."
TLP1 : Green
-
Linux Kernel’s Stable Branch Maintainer Greg Kroah-Hartman on Security and the Development Process
"The Linux kernel's stable branch maintainer Greg Kroah-Hartman discusses the current state of the development process, addresses some security concerns raised recently, and provides a snapshot of the status of the project as seen from the eyes of a deeply-involved and highly-influential insider."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware
"A North Korean threat actor has been discovered taking advantage of two exploits in Internet Explorer to infect victims with a custom implant as part of a strategic web compromise (SWC) targeting a South Korean online newspaper."
TLP1 : Green
-
[Follow-up] T-Mobile says hackers steal about 7.8 mln postpaid customers' personal data
"T-Mobile US Inc (TMUS.O) said on Wednesday an ongoing investigation into a cyberattack on its systems revealed that some personal data of about 7.8 million of its current postpaid customers were compromised."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
CISA Urges Organizations to Patch Critical BlackBerry QNX Bug
"A vulnerability in BlackBerry’s QNX Real-Time Operating System (RTOS) could pose a serious security risk to critical infrastructure providers, the US government has warned."
TLP1 : Green
-
Integer Overflow to RCE — ManageEngine Asset Explorer Agent (CVE-2021–20082)
"A couple months back, Chris Lyne and I had a look at ManageEngine ServiceDesk Plus. This product consists of a server / agent model in which agents provide updates on machine status back to the Manage Engine server."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
The Overlooked Security Risks of The Cloud
"Nate Warfield, CTO of Prevaliion, discusses the top security concerns for those embracing virtual machines, public cloud storage and cloud strategies for remote working."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
SGXRay - Automating Vulnerability Detection for SGX Apps
"Intel SGX protects isolated application logic and sensitive data inside an enclave with hardware-based memory encryption."
TLP1 : Green
-
ReverseSSH - Statically-linked Ssh Server With Reverse Shell Functionality For CTFs And Such
"A statically-linked ssh server with a reverse connection feature for simple yet powerful remote access. Most useful during HackTheBox challenges, CTFs or similar."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.