The Vulners team finally officially released own Splunk plugin. Why do you need SIEM + scanner? When you only need to use one less product! Many modern companies use several vulnerability solutions with different consoles/ interfaces/etc. Vulnerability scanners are an important part of the ongoing information security process. Splunk plugin from Vulners will save your … Continue reading Game changing plugin for your Splunk! Try out new!
This week there were such significant events as Defcon and Black Hat 2020. Some of the materials from these conferences are in today's digest. Vulnerabilities: Cool material from Blackhat 2020 and Qualcomm vulnerabilities. Tools: New code analyzer from facebook. News: Data leak and ransomware for Canon (like Garmin). Research: Mostly for the blue/purple teams. Feedback: … Continue reading The two most important conferences of the year and new facebook tool
In this monthly review, the most interesting materials of the month that were not included in previous weekly digests: Vulnerabilities Tools News Research
This week Cisco and Adobe released Emergency updates for their products. And the biggest news of the week are the attacks on Garmin and ATM maker Diebold Nixdorf. Feedback: https://forms.gle/D17BaFwD5hJnKkUUA Vulnerabilities Path traversal in Cisco's network security software CVE-2020-3452. A path traversal aims to access files and directories that are stored outside the web root folder. … Continue reading Important updates for Cisco and Adobe products, attack on Garmin and Diebold Nixdorf
Great news for security researchers and bug hunters! Apple officially started "The Security Research Device (SRD)" program to provide its devices to security researchers. To participate in this program, you need to meet several conditions: Developer account (99$/year);Bugs / vulnerabilities in the Apple platforms or in other popular and modern platforms / operating systems;You must … Continue reading Apple devices for security researchers
Vulnerabilities: There was a couple of high-profile news about vulnerabilities this week: SAP and SIGred (Patch it please!)Tools: A couple of cool tools appeared: procmon for Linux and Tsunami scanner from googleNews: Over 100 high profile Twitter accounts hacked via internal tool that was leaked by a Twitter employee. ZOOM? Again?And Research, because technical descriptions … Continue reading SAP, SIGred, procmon for Linux, Tsunami, Twitter and ZOOM?
On the second Tuesday in July, Microsoft released patches for 123 CVEs. But the most dangerous of all is the vulnerability CVE-2020-1350 in the Windows DNS Server versions 2003 to 2019. Vulnerability allows an unauthenticated user (attacker) to execute remote code on the target system. It can be exploited by sending crafted DNS query to … Continue reading Windows DNS vulnerability – CVSS 10
There are 4 sections:Vulnerabilities Tools News Research Feedback: https://forms.gle/D17BaFwD5hJnKkUUA Vulnerabilities Not so long ago, the 0-day vulnerability of CVE-2019-19781 was discussed in Citrix ADC and Citrix Gateway, which went unnoticed for at least a month and was used by various hacker groups. This week, Citrix released security updates for Citrix ADC, Citrix Gateway and Citrix SD-WAN … Continue reading Vulners weekly digest #14
There are 4 sections:VulnerabilitiesToolsNewsResearch Feedback: https://forms.gle/D17BaFwD5hJnKkUUA Vulnerabilities Vulnerability CVE-2020-5902 in F5 BIG-IP received a CVSS score of 10. Exploiting the vulnerability allows executing commands on behalf of an unauthorized user and completely compromising the system, for example, intercepting the traffic of web resources controlled by the controller. https://twitter.com/i/status/1280008779359125504 https://vulners.com/thn/THN:02088F21DB6E2D58FA2FBFDB5C735108 Multiple vulnerabilities in popular remote desktop … Continue reading Vulners weekly digest #13
Monthly review for the first time in four sections. Feedback: https://forms.gle/D17BaFwD5hJnKkUUA Vulnerabilities and exploits Bitdefender fixed the vulnerability in SafePay, a secure browser designed to protect sensitive online transactions, such as online banking and electronic purchases. Exploitation of vulnerability CVE-2020-8102 allows an attacker to remotely execute commands in the context of a user on a … Continue reading Monthly Vulners Review #3