Aggregator

D-Link is warning that four remote code execution (RCE) flaws impacting all hardware and firmware versions of its DIR-846W router will not be fixed as the products are no longer supported. [...]

An old but persistent email scam known as "sextortion" has a new personalized touch: The missives, which claim that malware has captured webcam footage of recipients pleasuring themselves, now include a photo of the target's home in a bid to make threats about publishing the videos more frightening and convincing.

Multiple types of organizations around the world are currently facing heightened threats from Iran-aligned cyber actors. Researchers continue to report significant increases in Iran-aligned threat activity well after the start of the Israel-Hamas War in October 2023. In recent weeks alone, Iran-backed groups deployed new malware for long-term intelligence collection, compromised U.S. presidential campaign systems, and even collaborated to ransom entities in critical U.S. and foreign industries. 

Whether you are a defender who wants to quickly assess defenses against all current major threats or an analyst looking to pinpoint certain groups with relevant motivations or targeting patterns, this resource aims to help by highlighting numerous links to recent adversary, tool, & TTP intelligence from across the Tidal Cyber knowledge base. 

How to Operationalize This Intelligence: Tidal Cyber is specifically designed to operationalize adversary behavioral intelligence. The free Community Edition lets defenders easily pivot from or compareadversary TTPs to elements of their defensive stack (60-second tutorial). The Enterprise Editionplatform supercharges this workflow witheasy-to-maintain collections of relevant threats, fully featured Defensive Stacks, and continually updated Coverage Maps. 

The post Iran Cyber Threat Resource Center: How to Navigate Amid Geopolitical Conflicts and Tensions appeared first on Security Boulevard.

A vulnerability was found in iBall iB-WRA150N 1.2.6 Build 110401 Rel.47776n. It has been classified as critical. This affects an unknown part of the component Ping Test. The manipulation as part of Shell Metacharacter leads to os command injection. This vulnerability is uniquely identified as CVE-2018-6388. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in WP Job Portal Plugin up to 2.1.6 on WordPress. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to missing authorization. The identification of this vulnerability is CVE-2024-7950. The attack may be initiated remotely. There is no exploit available.

Родительский контроль бессилен перед лицом новой киберугрозы.

A vulnerability classified as critical was found in Progress OpenEdge up to 11.7.19/12.2.14. This vulnerability affects unknown code of the component Multi-Session Agent Handler. The manipulation leads to code injection. This vulnerability was named CVE-2024-7345. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

error code: 521

A vulnerability classified as problematic has been found in Progress OpenEdge up to 11.7.19/12.2.14. This affects an unknown part of the component TLS Handler. The manipulation leads to certificate with host mismatch. This vulnerability is uniquely identified as CVE-2024-7346. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Apple 发布会前瞻：屏幕更大、AI 更强，除了 iPhone 还有哪些看点？上周，Apple 发出了 9 月发布会的官方邀请函，确定在北京时间 9 月 10 日凌晨一点召开一年一度的秋季发布会。与

A vulnerability was found in Progress OpenEdge up to 11.7.18/12.2.14/12.8.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component ActiveMQ Discovery Service. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-7654. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Researchers say password reset attacks have grown fourfold in the last year and one in four password reset attempts are fraudulent

A vulnerability was found in Gna Beryo 2.0/2.4. It has been classified as problematic. This affects an unknown part of the file downloadpic.php. The manipulation of the argument chemin leads to path traversal. This vulnerability is uniquely identified as CVE-2007-1929. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

惠普在 2011 年以 110 亿美元收购了英国软件公司 Autonomy，第二年就减记 88 亿美元，惠普随后指控Autonomy 存在严重会计违规操作行为。公司创始人 Mike Lynch 以及财务副总裁 Steve Chamberlain 都受到欺诈指控。但上个月两位被告先后因意外事故死亡。惠普企业（HPE）现在确认将继续推进这起欺诈诉讼。它寻求索赔 40 亿美元，它于 2022 年在英国高等法院赢得了对 Lynch 的民事诉讼，但审理此案的法官表示最终赔偿金额将大幅低于索赔金额。

A vulnerability classified as critical has been found in Atlassian FishEye up to 1.6.5.x. This affects an unknown part of the component Capabilities. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2012-2926. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

《雨中冒险（Risk of Rain）》系列游戏原开发团队 Hopoo Games 宣布它的大部分成员加入了 Valve 公司。而 Hopoo Games 本身将不复存在。《雨中冒险》IP 控制在 Gearbox 手中，预计会由 Gearbox 继续开发和维护，而由 Gearbox 开发的《雨中冒险2》扩展《风暴探寻者》受到了差评如潮的玩家评价。Valve 手中有多个游戏项目正在开发，其中之一是正在测试的 Deadlock，以及可能的《半条命》系列新作。Hopoo Games 团队可能会加入这些项目的开发。

A vulnerability was found in Adobe Acrobat Reader up to 11.0.22/2015.006.30355/2017.011.30066/2017.012.20098. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2017-16401. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Authors/Presenters:Zhiyuan Zhang, Gilles Barthe, Chitchanok Chuengsatiansup, Peter Schwabe, Yuval Yarom

Many thanks to USENIX for publishing their outstanding USENIX Security ’23 Presenter’s content, and the organizations strong commitment to Open Access. Originating from the conference’s events situated at the Anaheim Marriott; and via the organizations YouTube channel.

Permalink

The post USENIX Security ’23 – Ultimate SLH: Taking Speculative Load Hardening To The Next Level appeared first on Security Boulevard.

Authors/Presenters:Zhiyuan Zhang, Gilles Barthe, Chitchanok Chuengsatiansup, Peter Schwabe, Yuval Yarom

Many thanks to USENIX for publishing their outstanding USENIX Security ’23 Presenter’s content, and the organizations strong commitment to Open Access. Originating from the conference’s events situated at the Anaheim Marriott; and via the organizations YouTube channel.

Permalink

The post USENIX Security ’23 – Ultimate SLH: Taking Speculative Load Hardening To The Next Level appeared first on Security Boulevard.