News

  • CIS Benchmarks July 2020 Update Thu, 30 Jul 2020 17:18:35 +0000

        CIS Amazon Elastic Kubernetes Service (EKS) Benchmark v1.0.0 Prescriptive guidance for running Amazon Elastic Kubernetes Service (EKS) following recommended security controls. The CIS Benchmark only includes controls which can be modified by an end user of Amazon EKS. Download the CIS Amazon Elastic Kubernetes Service (EKS) Benchmark v1.0.0 Our members can visit CIS […]

    The post CIS Benchmarks July 2020 Update appeared first on CIS.

Looking Glass Cyber Malware Patrol SecList
  • WastedLocker: technical analysis
    According to currently available information, in the attack on Garmin a targeted build of the Trojan WastedLocker was used. We have performed technical analysis of the Trojan sample.
securingtomorrow.mcafee.com
    Quick Heal Threat Post Naked Security Security Affairs

    Security Awareness Tips of the week

    Exploits

    Last 20 Website Defacements - Zone-h

    Advisories

    Symantec Packet Stoem Security

    • WebRTC usrsctp Incorrect Call Fri, 31 Jul 2020 22:33:23 GMT
      When usrsctp is used with a custom transport, an address must be provided to usrsctp_conninput be used as the source and destination address of the incoming packet. WebRTC uses the address of the SctpTransport instance for this value. Unfortunately, this value is often transmitted to the peer, for example to validate signing of the cookie. This could allow an attacker access to the location in memory of the SctpTransport of a peer, bypassing ASLR.
    • ABUS Secvest Hybrid Module FUMO50110 Authentication Bypass Fri, 31 Jul 2020 19:39:42 GMT
      ABUS Secvest Hybrid module (FUMO50110) suffers an authentication bypass vulnerability. The hybrid module does not have any security mechanism that ensures confidentiality or integrity of RF packets that are exchanged between the ABUS Secvest alarm panel and the ABUS Secvest Hybrid module. Thus, an attacker can spoof messages of the ABUS Secvest Hybrid module based on sniffed status RF packets that are issued by the ABUS Secvest Hybrid module on a regularly basis (~2.5 minutes).
    • Gentoo Linux Security Advisory 202007-64 Fri, 31 Jul 2020 19:39:21 GMT
      Gentoo Linux Security Advisory 202007-64 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code. Versions less than 68.11.0 are affected.
    • Gentoo Linux Security Advisory 202007-63 Fri, 31 Jul 2020 19:39:14 GMT
      Gentoo Linux Security Advisory 202007-63 - Multiple vulnerabilities have been found in SNMP Trap Translator, the worst of which could allow attackers to execute arbitrary shell code. Versions less than 1.4.1 are affected.
    • Gentoo Linux Security Advisory 202007-62 Fri, 31 Jul 2020 19:39:07 GMT
      Gentoo Linux Security Advisory 202007-62 - A flaw in PyCrypto allow remote attackers to obtain sensitive information. Versions less than or equal to 2.6.1-r2 are affected.
    • Gentoo Linux Security Advisory 202007-61 Fri, 31 Jul 2020 19:38:59 GMT
      Gentoo Linux Security Advisory 202007-61 - Multiple vulnerabilities have been found in WebKitGTK+, the worst of which could result in the arbitrary execution of code. Versions less than 2.28.4 are affected.
    • Red Hat Security Advisory 2020-3207-01 Fri, 31 Jul 2020 19:38:53 GMT
      Red Hat Security Advisory 2020-3207-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a cross site scripting vulnerability.
    • Red Hat Security Advisory 2020-3253-01 Fri, 31 Jul 2020 19:38:46 GMT
      Red Hat Security Advisory 2020-3253-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.11.0 ESR. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2020-3254-01 Fri, 31 Jul 2020 19:38:39 GMT
      Red Hat Security Advisory 2020-3254-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.11.0 ESR. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2020-3248-01 Thu, 30 Jul 2020 15:51:48 GMT
      Red Hat Security Advisory 2020-3248-01 - This release of Red Hat build of Quarkus 1.3.4 SP1 includes security updates, bug fixes, and enhancements. For more information, see the release notes page listed in the References section. Issues addressed include XML injection and denial of service vulnerabilities.
    • Red Hat Security Advisory 2020-3241-01 Thu, 30 Jul 2020 15:51:39 GMT
      Red Hat Security Advisory 2020-3241-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.11.0 ESR. Issues addressed include a use-after-free vulnerability.
    • Gentoo Linux Security Advisory 202007-60 Thu, 30 Jul 2020 15:51:30 GMT
      Gentoo Linux Security Advisory 202007-60 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. Versions less than 68.11.0 are affected.
    • Red Hat Security Advisory 2020-3233-01 Thu, 30 Jul 2020 15:51:23 GMT
      Red Hat Security Advisory 2020-3233-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.11.0 ESR. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2020-3230-01 Thu, 30 Jul 2020 15:51:17 GMT
      Red Hat Security Advisory 2020-3230-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2020-3232-01 Thu, 30 Jul 2020 15:51:10 GMT
      Red Hat Security Advisory 2020-3232-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2020-3229-01 Thu, 30 Jul 2020 15:51:02 GMT
      Red Hat Security Advisory 2020-3229-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.11.0 ESR. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2020-3226-01 Thu, 30 Jul 2020 15:50:53 GMT
      Red Hat Security Advisory 2020-3226-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2020-3224-01 Thu, 30 Jul 2020 15:50:43 GMT
      Red Hat Security Advisory 2020-3224-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2020-3228-01 Thu, 30 Jul 2020 15:50:34 GMT
      Red Hat Security Advisory 2020-3228-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a bypass vulnerability.
    • Red Hat Security Advisory 2020-3227-01 Thu, 30 Jul 2020 15:50:22 GMT
      Red Hat Security Advisory 2020-3227-01 - The grub2 packages provide version 2 of the Grand Unified Boot Loader, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. The fwupd packages provide a service that allows session software to update device firmware. Issues addressed include buffer overflow, code execution, integer overflow, and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2020-3223-01 Thu, 30 Jul 2020 15:50:13 GMT
      Red Hat Security Advisory 2020-3223-01 - The grub2 packages provide version 2 of the Grand Unified Boot Loader, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. The fwupd packages provide a service that allows session software to update device firmware. Issues addressed include buffer overflow, code execution, integer overflow, and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2020-3222-01 Thu, 30 Jul 2020 15:50:01 GMT
      Red Hat Security Advisory 2020-3222-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow, bypass, denial of service, and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2020-3217-01 Thu, 30 Jul 2020 15:49:51 GMT
      Red Hat Security Advisory 2020-3217-01 - The grub2 packages provide version 2 of the Grand Unified Boot Loader, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. The fwupdate packages provide a service that allows session software to update device firmware. Issues addressed include buffer overflow, code execution, integer overflow, and use-after-free vulnerabilities.
    • Ubuntu Security Notice USN-4432-1 Thu, 30 Jul 2020 15:49:40 GMT
      Ubuntu Security Notice 4432-1 - Jesse Michael and Mickey Shkatov discovered that the configuration parser in GRUB2 did not properly exit when errors were discovered, resulting in heap-based buffer overflows. A local attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. Chris Coulson discovered that the GRUB2 function handling code did not properly handle a function being redefined, leading to a use-after-free vulnerability. A local attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. Various other issues were also addressed.
    • Ubuntu Security Notice USN-4443-1 Thu, 30 Jul 2020 15:49:30 GMT
      Ubuntu Security Notice 4443-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass iframe sandbox restrictions, confuse the user, or execute arbitrary code. It was discovered that redirected HTTP requests which are observed or modified through a web extension could bypass existing CORS checks. If a user were tricked in to installing a specially crafted extension, an attacker could potentially exploit this to obtain sensitive information across origins. Various other issues were also addressed.