Security Affairs
- Critical flaws affect Jira Service Desk and Jira Service Desk Data Center 22 septembre 2019
Atlassian released security updates for Jira Service Desk and Jira Service Desk Data Center to address a critical flaw that can lead to information disclosure Atlassian released security updates to address critical vulnerabilities in Jira Service Desk and Jira Service Desk Data Center. One of the flaw can lead to information disclosure, while another critical vulnerability addressed by Atlassian c … - Security Affairs newsletter Round 232 22 septembre 2019
A new round of the weekly newsletter arrived! The best news of the week with Security Affairs Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. Once again thank you! A bug in Instagram exposed user accounts and phone numbers Delaler Leads, a car dealer marketing firm exposed 198 Milli … - 0patch will provide micropatches for Windows 7 and Server 2008 after EoS 22 septembre 2019
With the end-of-life of Windows 7 and Server 2008, their users will no more receive security patches, the only way to remain protected is to trust in micropatches. On January 14, 2020, support for Window 7, Windows Server 2008 and 2008 R2 will end, this means that users will no longer receive security updates. In order to address security issued in their operating systems, user … - Facebook suspends tens of thousands of apps from hundreds of developers 22 septembre 2019
Facebook announced it has suspended tens of thousands of apps as a result of a review of privacy practices launched following the Cambridge Analytica scandal. In April 2018, Facebook revealed that 87 million users have been affected by the Cambridge Analytica case, much more than 50 million users initially thought. The company allowed to access to the personal data of arou … - Iran denies successful cyber attacks hit infrastructures of its oil sector 21 septembre 2019
In the last hours, some western media reported destructive cyber attacks against infrastructures in the Iranian oil sector, but Iran denied it. Last week drone attacks have hit two major oil facilities run by the state-owned company Aramco in Saudi Arabia, one of them is the Abqaiq site. Western Governments and Saudi Arabia blamed Iran for the attacks. Immediately after Saudi Arabia oil attacks, e … - MMD-0063-2019 – Summarize report of three years MalwareMustDie research (Sept 2016-Sept 2019) 21 septembre 2019
Hello, it’s unixfreaxjp here. It has been a while since I wrote our own blog, and it is good to be back. Thank you for your patience for all of this time. The background It was after September 2016 when we decided to move our blog and since then I had a lot of fun in learning and experimenting much with “Jekyll” (based on “Poole”) and “BlackDoc”, and I jus … - One of the hackers behind EtherDelta hack also involved in TalkTalk hack 21 septembre 2019
US authorities have indicted two men for hacking the exchange EtherDelta in December 2017, one of them was also accused of TalkTalk hack. US authorities have indicted two men, Elliot Gunton and Anthony Tyler Nashatka, for hacking the cryptocurrency exchange EtherDelta in 2017. In December 2017, the popular cryptocurrency exchange EtherDelta was hacked, attackers conducted a DNS attack that allowed … - 5 Cybersecurity Trends in the Professional Services Sector 21 septembre 2019
Cybersecurity is an increasingly significant focus for many companies as cyberattacks become more frequent and more costly. Which are 5 Cybersecurity trends in the professional services sector? Professional services organizations are especially vulnerable due to the high value of the industry and the data they store — like Social Security numbers, personal financial information and classified busi … - Two selfie Android adware apps with 1.5M+ downloads removed from Play Store 20 septembre 2019
Experts at Wandera’s threat research team discovered two adware apps on the Google Play Store that were downloaded 1.5M+ times. Researchers at Wandera discovered two adware selfie filter camera apps on the Google Play that were pushing ads and that can record audio. The bad news is that the two apps were downloaded 1.5M+ times. The two apps are Sun Pro Beauty Camera (1M+ installs) and Funny Sweet … - U.S. taxpayers hit by a phishing campaign delivering the Amadey bot 20 septembre 2019
Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. The Amadey bot is a quite simple piece of malware that is available for hire for cybercr …
The Hackers News
- Two Widely Used Ad Blocker Extensions for Chrome Caught in Ad Fraud Scheme 20 septembre 2019
Two widely used Adblocker Google Chrome extensions, posing as the original — AdBlock and uBlock Origin — extensions on Chrome Web Store, have been caught stuffing cookies in the web browser of millions of users to generate affiliate income from referral schemes fraudulently. There’s no doubt web extensions add a lot of useful features to web browsers, making your online experience great and … - Update Google Chrome Browser to Patch New Critical Security Flaws 19 septembre 2019
Google has released an urgent software update for its Chrome web browser and is urging Windows, Mac, and Linux users to upgrade the application to the latest available version immediately. Started rolling out to users worldwide this Wednesday, the Chrome 77.0.3865.90 version contains security patches for 1 critical and 3 high-risk security vulnerabilities, the most severe of which could allow … - IT Firm Manager Arrested in the Biggest Data Breach Case of Ecuador’s History 18 septembre 2019
Ecuador officials have arrested the general manager of IT consulting firm Novaestrat after the personal details of almost the entire population of the Republic of Ecuador left exposed online in what seems to be the most significant data breach in the country’s history. Personal records of more than 20 million adults and children, both dead and alive, were found publicly exposed on an unsecured … - Smominru Botnet Indiscriminately Hacked Over 90,000 Computers Just Last Month 18 septembre 2019
Insecure Internet-connected devices have aided different types of cybercrime for years, most common being DDoS and spam campaigns. But cybercriminals have now shifted toward a profitable scheme where botnets do not just launch DDoS or spam—they mine cryptocurrencies as well. Smominru, an infamous cryptocurrency-mining and credential-stealing botnet, has become one of the rapidly spreading … - The Definitive RFP Templates for EDR/EPP and APT Protection 18 septembre 2019
Advanced Persistent Threats groups were once considered a problem that concerns Fortune 100 companies only. However, the threat landscape of the recent years tells otherwise—in fact, every organization, regardless of vertical and size is at risk, whether as a direct target, supply chain or collateral damage. The vast majority of security decision-makers acknowledge they need to address the … - Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions 18 septembre 2019
A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of the most popular applications for managing the MySQL and MariaDB databases. phpMyAdmin is a free and open source administration tool for MySQL and MariaDB that’s widely used to manage the database for websites created with WordPress, Joomla, and many other … - United States Sues Edward Snowden and You'd be Surprised to Know Why 18 septembre 2019
The United States government today filed a lawsuit against Edward Snowden, a former contractor for the CIA and NSA government agencies who made headlines worldwide in 2013 when he fled the country and leaked top-secret information about NSA’s global and domestic surveillance activities. And you would be more surprised to know the reason for this lawsuit—No, Snowden has not been sued for … - Thousands of Google Calendars Possibly Leaking Private Information Online 17 septembre 2019
« Warning — Making your calendar public will make all events visible to the world, including via Google search. Are you sure? » Remember this security warning? No? If you have ever shared your Google Calendars, or maybe inadvertently, with someone that should not be publicly accessible anymore, you should immediately go back to your Google settings and check if you’re exposing all your events … - 125 New Flaws Found in Routers and NAS Devices from Popular Brands 17 septembre 2019
The world of connected consumer electronics, IoT, and smart devices is growing faster than ever with tens of billions of connected devices streaming and sharing data wirelessly over the Internet, but how secure is it? As we connect everything from coffee maker to front-door locks and cars to the Internet, we’re creating more potential—and possibly more dangerous—ways for hackers to wreak havoc. … - WhatsApp 'Delete for Everyone' Doesn't Delete Media Files Sent to iPhone Users 17 septembre 2019
Mistakenly sent a picture to someone via WhatsApp that you shouldn’t have? Well, we’ve all been there, but what’s more unfortunate is that the ‘Delete for Everyone’ feature WhatsApp introduced two years ago contains an unpatched privacy bug, leaving its users with false sense of privacy. WhatsApp and its rival Telegram messenger offer « Delete for Everyone, » a potentially life-saving feature … - How Cloud-Based Automation Can Keep Business Operations Secure 16 septembre 2019
The massive data breach at Capital One – America’s seventh-largest bank, according to revenue – has challenged many common assumptions about cloud computing for the first time. Ironically, the incident, which exposed some 106 million Capital One customers’ accounts, has only reinforced the belief that the cloud remains the safest way to store sensitive data. « You have to compare [the cloud] … - US Sanctions 3 North Korean Hacking Groups Accused for Global Cyber Attacks 14 septembre 2019
The United States Treasury Department on Friday announced sanctions against three state-sponsored North Korean hacking groups for conducting several destructive cyberattacks on US critical infrastructure. Besides this, the hacking groups have also been accused of stealing possibly hundreds of millions of dollars from financial institutions around the world to ultimately fund the North Korean … - Yikes! iOS 13 Coming Next Week With iPhone LockScreen Bypass Bug 13 septembre 2019
Good news… next week, on September 19, Apple will roll out iOS 13, the latest version of its mobile operating system. Yes, we’re excited about, but here comes the bad news… iOS 13 contains a vulnerability that could allow anyone to bypass the lockscreen protection on your iPhone and access some sensitive information. Jose Rodriguez, a Spanish security researcher, contacted The Hacker … - New SIM Card Flaw Lets Hackers Hijack Any Phone Just By Sending SMS 12 septembre 2019
Cybersecurity researchers today revealed the existence of a new and previously undetected critical vulnerability in SIM cards that could allow remote attackers to compromise targeted mobile phones and spy on victims just by sending an SMS. Dubbed « SimJacker, » the vulnerability resides in a particular piece of software, called the S@T Browser (a dynamic SIM toolkit), embedded on most SIM cards … - WebARX — A Defensive Core For Your Website 12 septembre 2019
Estonian based web security startup WebARX, the company who is also behind open-source plugin vulnerability scanner WPBullet and soon-to-be-released bug bounty platform plugbounty.com, has a big vision for a safer web. It built a defensive core for websites which is embedded deep inside the company’s DNA as even ARX in their name refers to the citadel (the core fortified area of a town or … - Popular Period Tracking Apps Share Your Sexual Health Data With Facebook 12 septembre 2019
Hello Ladies, let’s talk about periods, privacy, and Facebook. Are you using an app on your smartphone to keep tracks on your periods? Well, it’s worrying, because it might be sharing your extremely sensitive information like menstrual cycle and sexual activities with Facebook. A new investigative report from UK-based advocacy group Privacy International revealed how some most popular … - NetCAT: New Attack Lets Hackers Remotely Steal Data From Intel CPUs 11 septembre 2019
Unlike previous side-channel vulnerabilities disclosed in Intel CPUs, researchers have discovered a new flaw that can be exploited remotely over the network without requiring an attacker to have physical access or any malware installed on a targeted computer. Dubbed NetCAT, short for Network Cache ATtack, the new network-based side-channel vulnerability could allow a remote attacker to sniff … - CISO Kit — Breach Protection in the Palm of Your Hand 12 septembre 2019
CISOs and CIOs need to know better than anyone the security pulse of their organizations. On the other hand, they cannot be flooded with every changing detail. Finding the right balance that enables them to clearly grasp the big picture required in making sound decisions is a task many security executives find challenging. Threat actors do not acknowledge off-hours or weekends, introducing the … - Google to Experiment 'DNS over HTTPS' (DoH) Feature in Chrome 78 11 septembre 2019
Immediately after Mozilla announced its plan to soon enable ‘DNS over HTTPS’ (DoH) by default for Firefox users in the United States, Google today says it is planning an experiment with the privacy-focused technology in its upcoming Chrome 78. Under development since 2017, ‘DNS over HTTPS’ performs DNS lookups—finding the server IP address of a certain domain name—over an encrypted HTTPS … - Mozilla Launches 'Firefox Private Network' VPN Service as a Browser Extension 11 septembre 2019
Mozilla has officially launched a new privacy-focused VPN service, called Firefox Private Network, as a browser extension that aims to encrypt your online activity and limit what websites and advertisers know about you. Firefox Private Network service is currently in beta and available only to desktop users in the United States as part of Mozilla’s recently expunged « Firefox Test Pilot » …
Dark Reading
- 7 Ways VPNs Can Turn from Ally to Threat 21 septembre 2019
VPNs are critical pieces of the security infrastructure, but they can be vulnerable, hackable, and weaponized against you. Here are seven things to be aware of before you ignore your VPN. - HP Purchases Security Startup Bromium 20 septembre 2019
The purchase will bring new isolation and threat intelligence capabilities to the HP portfolio. - Ransomware Strikes 49 School Districts & Colleges in 2019 20 septembre 2019
The education sector has seen 10 new victims in the past nine days alone, underscoring a consistent trend throughout 2019. - WeWork's Wi-Fi Exposed Files, Credentials, Emails 20 septembre 2019
For years, sensitive documents and corporate data have been easily viewable on the coworking space’s open network. - A Safer IoT Future Must Be a Joint Effort 20 septembre 2019
We’re just at the beginning of an important conversation about the future of our homes and cities, which must involve both consumers and many players in the industry - Edge Feature Section 20 septembre 2019
Lorem Ipsum is simply dummy text of the printing and typesetting industry. Lorem Ipsum has been the industry’s standard dummy text ever since the 1500s, when an unknown printer took a galley of type and scrambled it to make a type specimen book - Best Practices 20 septembre 2019
- A Beginner's Guide to Microsegmentation 20 septembre 2019
In a world in which the data center perimeter has all but evaporated, traditional segmentation no longer is enough. Enter microsegmentation. Here’s what organizations need to do to maximize the benefits of this improved security architecture. - Lion Air the Latest to Get Tripped Up by Misconfigured AWS S3 19 septembre 2019
The breach, which reportedly exposed data on millions of passengers, is one of many that have resulted from organizations leaving data publicly accessible in cloud storage buckets. - Metasploit Creator HD Moore's Latest Hack: IT Assets 19 septembre 2019
Moore has built a network asset discovery tool that wasn’t intended to be a pure security tool, but it addresses a glaring security problem.
gHacks
- New Microsoft Edge gets Potentially Unwanted Application (PUA) protection 22 septembre 2019
The latest version of Microsoft’s upcoming Chromium-based Microsoft Edge web browser includes options to enable protection against Potentially Unwanted Applications (PUAs). The feature blocks downloads of software programs that Microsoft Defender SmartScreen identified as potentially problematic. Microsoft introduced a new protective feature in Windows Defender in August 2018 that would detect and … - 0Patch to support Windows 7 and Server 2008 R2 with security patches after official support end 21 septembre 2019
Microsoft plans to end support for the company’s operating systems Windows 7 and Windows Server 2008 R2 in January 2020. Enterprise customers may purchase extensions to extend support by up to three years and some other exceptions apply that extend official support. Most businesses and all home customers won’t be able to extend support officially. Security company 0Patch announced on September 21, … - How to whiteout text in PDFs using DocHub and Google Docs 21 septembre 2019
Filling up a PDF form is pretty easy. You fire up a PDF editor application, use the text tool in it and type away. Editing a PDF which already has text in it? It’s not that easy. Say for example, you have an application form which has a few text fields but instead of blank boxes to type in, there is already text in some of the fields like « Write in CAPITAL letters », « Include your State », etc. I kn … - Google implements backward-forward cache in Chrome 79 Canary 20 septembre 2019
Google engineers revealed in February 2019 that they were working on a new feature in Chrome that would speed up the backward and forward browsing behavior of the browser. Google wanted to improve the performance of back and forward operations in the company’s Chrome web browser and designed a cache that would keep pages in memory so that they could be displayed more quickly in the browser when us … - Will Microsoft launch a consumer Microsoft 365 subscription product? 20 septembre 2019
Microsoft has put a strong focus on subscriptions in the past couple of years. The company launched Office 365 for consumers, businesses and Enterprises, and Microsoft 365 for businesses and Enterprises. The two subscription-based products provide customers with access to Office and online storage, and access to Windows and Office respectively. Extras may be available depending on the selected pla … - How to create a private torrent using qBittorrent 20 septembre 2019
If you have a set of files that you wish to share with someone, but don’t want to use cloud storage services, there are a few options that you can use. Syncthing or Resilio Sync come to mind, or traditional options such as FTP. But there is a simpler way: creating a private torrent. All you need is a BitTorrent client and a couple of minutes to set it up correctly so that your files can be shared … - Ghacks Deals: The Complete Python Certification Bootcamp Bundle (98% off) 19 septembre 2019
The Complete Python Certification Bootcamp Bundle is a big eLearning bundle that that is all about learning Python. The twelve courses of the bundle cover a wide range of topics, from learning Python from scratch over game programming to data mining, image processing, or cyber security. You develop applications in one course and learn about visualization and the use of helper tools in another. The … - Microsoft releases new open source font Cascadia Code 19 septembre 2019
Microsoft released a new open source font today on the company’s GitHub website. The new font, called Cascadia Code, was announced at Microsoft’s Build event in May. It is a monospaced font designed specifically for code editors, development environments as well as terminal applications. Microsoft developed it « hand in hand » with the new Windows Terminal application that the company released as a … - Web Browser Vivaldi 2.8 has been released 19 septembre 2019
Norwegian company Vivaldi Technologies released a new version of the company’s Vivaldi web browser on September 20, 2019 to the public. Vivaldi 2.8 is an update for the desktop web browser that improves the browser’s synchronization functionality to better support the recently released Android version of Vivaldi. Vivaldi released the first Android version in September 2019 as a beta app with some … - Metatogger is a great way to manage your music library 19 septembre 2019
A properly categorized music library is important for music lovers who listen to music on their electronic devices. The best way to manage your collection is by tagging your songs and albums properly. Doing this manually can be a real chore, especially if you have hundreds or thousands of songs. Tip: check out previously reviewed music taggers Picard or TagScanner. Metaogger Metatogger can help ma …
blackMORE Ops
- Microsoft Operating Systems BlueKeep Vulnerability 22 septembre 2019
The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this Activity Alert to provide information on a vulnerability, known as “BlueKeep,” that exists in the following Microsoft Windows Operating Systems (OSs), including both 32- and 64-bit versions, as well as all Service Pack versions: The post Microsoft Operating Systems BlueKeep Vulnerability appeared first on blackMORE Ops. … - A .vimrc config file everyone should use 24 avril 2019
Ever had that issue when you login to a Linux terminal, editing a file and the texts are just blue and you can’t read? I’ve had way too many cause default vim/vi config is just bad. I created a good .vimrc config file. Simply create a file with .vimrc name in home directory a paste … The post A .vimrc config file everyone should use appeared first on blackMORE Ops. … - Remove cloud-init from Ubuntu 19 avril 2019
Cloud images are operating system templates and every instance starts out as an identical clone of every other instance. It is the user data that gives every cloud instance its personality and cloud-init is the tool that applies user data to your instances automatically. Cloud-init is the defacto multi-distribution package that handles early initialization of … The post Remove cloud-init fro … - How to Prevent DOM-based Cross-site Scripting 8 janvier 2019
There’s no denying the role that JavaScript has played in making web applications the sleek, interactive, online experiences that we know and love today. This powerful scripting language brought interactivity and animation to the web. But with great power comes great responsibility. Cross-site-scripting (XSS) remains a persistent stalwart among the OWASP Top 10. Malicious JavaScript … The po … - Side-Channel Vulnerability Variants 3a and 4 – Spectre and Meltdown 28 décembre 2018
On May 21, 2018, new variants of the side-channel central processing unit (CPU) hardware vulnerabilities known as Spectre and Meltdown were publicly disclosed. These variants—known as 3A and 4—can allow an attacker to obtain access to sensitive information on affected systems. Systems Affected CPU hardware implementations Description Common CPU hardware implementations are vulnerable to the … - How to access Dark Web? 27 décembre 2018
The concept of the Dark Web isn’t vastly different from the Surface Web. There are message boards (e.g. 8chan, nntpchan), places you can buy things (e.g. Alphabay, Hansa), and blogs (e.g. OnionNews, Deep Web Radio). The rules, or rather a lack thereof, is what makes the Dark Web unique. Anything that is illegal to sell … The post How to access Dark Web? appeared first on blackMORE Ops. … - Inception Attackers Target Europe with Year-old Office Vulnerability 14 décembre 2018
The Inception attackers have been active since at least 2014 and have been documented previously by both Blue Coat and Symantec; historical attacks used custom malware for a variety of platforms, and targeting a range of industries, primarily in Russia, but also around the world. This blog describes attacks against European targets observed in October … The post Inception Attackers Target Eu … - Brute Force Attacks Conducted by Cyber Actors 13 décembre 2018
In a traditional brute-force attack, a malicious actor attempts to gain unauthorized access to a single account by guessing the password. This can quickly result in a targeted account getting locked-out, as commonly used account-lockout policies allow three to five bad attempts during a set period of time. During a password-spray attack (also known as … The post Brute Force Attacks Conducted … - Avoiding Web Application Firewall using Python 21 novembre 2018
Web application firewalls are usually placed in front of the web server to filter the malicious traffic coming towards server. If you arehired as a penetration tester for some company and they forgot to tell you that they are using web application firewall than you might get into a serious mess. The figure below depicts … The post Avoiding Web Application Firewall using Python appeared first … - Targeting websites with Password Reset Poisoning 20 novembre 2018
Most of web application security vulnerabilities, leverage user input in ways that were not initially intended by their developer(s). Password Reset Poisoning is one such vulnerability, that leverages commonly unthought of headers, such as the Host header seen in an HTTP request: GET https://example.com/reset.php?email=foo@bar.com HTTP/1.1 Host: evilhost.com Notice the difference where we specify …