Day: November 9, 2021

Ransomware Conti Is Set To Infiltrate Backups

Ransomware linked to hundreds of cases is now believed to be able to view, take information, delete, and even destroy backup data. Conti has been known to target the healthcare industry and first responder systems. It has exploited around 290 institutions in the United States alone, including emergency medical services, police enforcement, and other healthcare-related …

Ransomware Conti Is Set To Infiltrate Backups Read More »

NUCLEUS:13 TCP security bugs impact critical healthcare devices

Researchers today published details about a suite of 13 vulnerabilities in the Nucleus real-time operating system (RTOS) from Siemens that powers devices used in the medical, industrial, automotive, and aerospace sectors. Dubbed NUCLEUS:13, the set of flaws affect the Nucleus TCP/IP stack and could be leveraged to obtain remote code execution on vulnerable devices, create …

NUCLEUS:13 TCP security bugs impact critical healthcare devices Read More »

Protiviti collaborates with Microsoft to help organizations meet compliance obligations

Protiviti has launched a suite of new services built on top of Microsoft Compliance Manager to enable continuous control monitoring and risk reduction in the cloud. In collaboration with Microsoft, Protiviti has developed a suite of scalable services to help organizations manage compliance for the multi-cloud. These services can increase visibility, improve risk management and …

Protiviti collaborates with Microsoft to help organizations meet compliance obligations Read More »

NETMONASTERY partners with SecurityHQ to deliver cyber threat detection solutions for enterprises

NETMONASTERY NSPL announced its partnership with SecurityHQ, delivering engineering-led solutions to clients around the world. By combining dedicated security experts, technology, and processes, SecurityHQ clients receive an enterprise grade experience that ensures that all IT virtual assets, cloud, and traditional infrastructures, are protected. Under this engagement the two companies agree to work together to bring …

NETMONASTERY partners with SecurityHQ to deliver cyber threat detection solutions for enterprises Read More »

Introducing Dynamic Observability: A no-code integration between Elastic and Rookout

, This guest post is by Oded Keret, Rookout’s vice president of product. Oded is an experienced software engineer and product manager. He is a true believer in having fun while working together. He is also the founder of the Board Games in Tel-Aviv Meetup group, and Co-Founder of The Party™ team.” In recent years, Observability has become …

Introducing Dynamic Observability: A no-code integration between Elastic and Rookout Read More »

Malicious Excel File Using Macro Sheets Being Distributed in Korea (2)

The ASEC analysis team has found multiple distributions of malicious excel file that uses macro sheet (Excel 4.0 Macro) via phishing email. The use of macro sheet is a method commonly used by the distributor, and such method was also used in the distribution of malware such as SquirrelWaffle and Qakbot. The malware that uses …

Malicious Excel File Using Macro Sheets Being Distributed in Korea (2) Read More »

Kerv acquires Gyrocom to expand its SD-WAN and SASE offerings

Kerv announced the acquisition of Gyrocom, a fast growing network and security integrator with a specialisation in SD-WAN. In addition to SD-WAN, Kerv’s strategic acquisition brings skills in managed networks and network security, including Secure Access Service Edge (SASE), the rapidly emerging cybersecurity solution. Gyrocom will operate as Kerv’s specialist networking and security division. Gyrocom, …

Kerv acquires Gyrocom to expand its SD-WAN and SASE offerings Read More »

SafeBreach raises $53.5M to expand its market footprint

SafeBreach announced that it has raised $53.5 million in Series D funding, led by Sonae IM and Israel Growth Partners (IGP), with additional participation from Sands Capital and Leumi Partners. The latest round also includes strategic investment from ServiceNow, the leading digital workflow company that makes work, work better for people, as well as participation …

SafeBreach raises $53.5M to expand its market footprint Read More »

[tl;dr sec] #109 – Breaking Stateless Authentication, Secrets, Unicode Chicanery

Hey there, I hope you’ve been doing well! Password Advice As you know, secrets and passwords are critical for security. You’ll see some great work in that space further down this issue. But I wanted to start straight out of the gate with some helpful advice from this TikTok: r2c and Semgrep Updates A bit …

[tl;dr sec] #109 – Breaking Stateless Authentication, Secrets, Unicode Chicanery Read More »

SANS Experts Offer Advice: How to Make the Most of a Free Device with Your Training

SANS Institute is once again offering our best special offers of the year, and will be offering a variety of devices and discounts to choose from in the coming weeks. Now through November 17, register for a 4-6 day SANS training course and get your choice between an 11″ iPad Pro with Magic Keyboard, a …

SANS Experts Offer Advice: How to Make the Most of a Free Device with Your Training Read More »

[webapps] Employee Daily Task Management System 1.0 – 'Name' Stored Cross-Site Scripting (XSS)

# Exploit Title: Employee Daily Task Management System 1.0 – ‘Name’ Stored Cross-Site Scripting (XSS) # Date: 09/11/2021 # Exploit Author: Ragavender A G # Vendor Homepage: https://www.sourcecodester.com/ # Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/edtms.zip # Version: v1.0 # Tested on: Windows 10 *Exploit:* 1. Navigate to the URL, http://localhost/edtms/edtms/admin/?page=maintenance 2. Add New department with the following value: …

[webapps] Employee Daily Task Management System 1.0 – 'Name' Stored Cross-Site Scripting (XSS) Read More »

[webapps] Employee and Visitor Gate Pass Logging System 1.0 – 'name' Stored Cross-Site Scripting (XSS)

# Exploit Title: Employee and Visitor Gate Pass Logging System 1.0 – ‘name’ Stored Cross-Site Scripting (XSS) # Date: 10.11.2021 # Exploit Author: İlhami Selamet # Vendor Homepage: https://www.sourcecodester.com/php/15026/employee-and-visitor-gate-pass-logging-system-php-source-code.html # Software Link: https://www.sourcecodester.com/download-code?nid=15026&title=Employee+and+Visitor+Gate+Pass+Logging+System+in+PHP+with+Source+Code # Version: v1.0 # Tested on: Kali Linux + XAMPP v8.0.12 Employee and Visitor Gate Pass Logging System PHP 1.0 suffers from …

[webapps] Employee and Visitor Gate Pass Logging System 1.0 – 'name' Stored Cross-Site Scripting (XSS) Read More »

Protecting Yourself in the Wake of the Robinhood Data Breach

The Robinhood trading platform recently disclosed a data breach that exposed the information of millions of its customers. News of the attack was released on Monday, November 8th along with word the hackers behind it had demanded an extortion payment from the company.  According to Robinhood’s disclosure, the attack occurred on November 3rd, which allowed an unauthorized party to obtain the following:  Email addresses for some 5 million people.  Full names …

Protecting Yourself in the Wake of the Robinhood Data Breach Read More »

Russia-Linked REvil Hackers and Their Affiliates Hit with Arrests by the U.S. and International Allies

On November 8, 2021, law enforcement agencies in both the United States and European Union announced that a series of actions, including a number of arrests, were taken against the Russia-linked ransomware group, “REvil.” The U.S. Department of Justice (the “DOJ”) unsealed documents relating to an August indictment against two individuals in Dallas for alleged …

Russia-Linked REvil Hackers and Their Affiliates Hit with Arrests by the U.S. and International Allies Read More »

How to do penetration testing of IoT devices easily

The Internet of Things (IoT) is probably one of the most widely used technological concepts in recent times, as it has implementations in all kinds of environments, from complex industrial processes to domestic use. According to pentesting specialists, IoT architecture can be divided into 3 layers: hardware, communication or network and interfaces or services. In …

How to do penetration testing of IoT devices easily Read More »

VERT Threat Alert: November 2021 Patch Tuesday Analysis

Today’s VERT Alert addresses Microsoft’s November 2021 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-972 on Wednesday, November 10th. In-The-Wild & Disclosed CVEs CVE-2021-42292 Up first this month, we have a 0-day in Microsoft Excel that allows an attacker to bypass security features. This vulnerability has seen …

VERT Threat Alert: November 2021 Patch Tuesday Analysis Read More »

Lightspin adds four executive members to its Advisory Board and Board of Directors

Lightspin announced the addition of four strategic executive members to its advisory board and board of directors: Guarav Kumar, Srinath Kuruvadi, Steve Pugh, and Ron Zoran. The new members each have an established track record as industry CISOs and cloud security experts and will play key roles advising the company on both technology and business …

Lightspin adds four executive members to its Advisory Board and Board of Directors Read More »

Microsoft Releases November 2021 Security Updates

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s November 2021 Security Update Summary and Deployment Information and apply the necessary updates.Read more

FPF Files Comments on CPRA Initial Rulemaking

Yesterday, the Future of Privacy Forum filed comments with the California Privacy Protection Agency on the initial rulemaking under the California Privacy Rights Act (CPRA). The CPRA, which comes into effect in 2023, provides protections for sensitive personal information, expands the California Consumer Privacy Act’s opt-out rights, and requires businesses to provide mechanisms for individuals …

FPF Files Comments on CPRA Initial Rulemaking Read More »

Samba Releases Security Updates

Official websites use .govA .gov website belongs to an official government organization in the United States. Secure .gov websites use HTTPS A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites. Read more

NY Bills Require Telecoms To Step Up Robocall Protections

By Allison Grande (November 9, 2021, 10:32 PM EST) — New York’s governor signed a pair of bills Monday that will require telecommunications providers to enhance their capabilities to validate incoming calls and block unsolicited robocalls, building on similar efforts by the nation’s telecom regulator to crack down on an influx of these unwanted communications. …

NY Bills Require Telecoms To Step Up Robocall Protections Read More »

Microsoft Patch Tuesday for Nov. 2021 — Snort rules and prominent vulnerabilities

By Jon Munshaw and Tiago Pereira.  Microsoft released its monthly security update Tuesday, disclosing 56 vulnerabilities in the company’s various software, hardware and firmware offerings, including one that’s actively being exploited in the wild.   November’s security update… [[ This is only the beginning! Please visit the blog for the complete entry ]]Read more

Top 5 Ways to Defend Against Ransomware Now

Cybersecurity professionals are inundated with conversations, statistics, and news stories about the threats of ransomware every day. But what can organizations do to effectively mitigate these threats?  Roger Grimes, Data-Driven Defense Evangelist for KnowBe4, gets to the meat of this question in his latest Remote Sessions webcast for SecureWorld.  In this thorough presentation, Grimes covers all …

Top 5 Ways to Defend Against Ransomware Now Read More »