Day: November 10, 2021

Edgecore Networks partners with Spirent to manage post-deployment operational issues

Edgecore Networks announced a demonstration of datacenter troubleshooting capability built on OCP-based Hardware in collaboration with Spirent Communications. Leveraging the Edgecore-contributed OCP Device Manager monitoring and managing network devices, Spirent CloudSure solution can dramatically decrease the number of service outages by automatically identifying and remediating issues. With the introduction of 5G mobile networks, the significant …

Edgecore Networks partners with Spirent to manage post-deployment operational issues Read More »

Tanium collaborates with Deep Instinct to strengthen endpoint security for organizations

Tanium announced a partnership with Deep Instinct, offering organizations around the globe the ability to evolve endpoint security and scale to meet the needs of enterprises, by improving the prevention of unknown malware before it executes and infects endpoints and IT environments. Together, Tanium and Deep Instinct ensure that organizations have complete endpoint coverage while …

Tanium collaborates with Deep Instinct to strengthen endpoint security for organizations Read More »

Menta partners with Secure-IC to deliver a secure solution for sensitive applications

Menta and Secure-IC announced a new milestone in their technology partnership: the availability of a 28nm test chip and board incorporating Menta’s eFPGA and Secure-IC’s integrated Secure Elements solutions. The combination of the two technologies demonstrates how Secure-IC’s IP technology and Menta’s eFPGA IP work in tandem to deliver a secure solution for sensitive applications. …

Menta partners with Secure-IC to deliver a secure solution for sensitive applications Read More »

Void Balaur hackers-for-hire sell stolen mailboxes and private data

A hacker-for-hire group called Void Balaur has been stealing emails and highly-sensitive information for more than five years, selling it to customers with both financial and espionage goals. With more than 3,500 targets spread across almost all continents, this prolific threat actor is advertising its services on Russian underground forums. Security researchers at Trend Micro …

Void Balaur hackers-for-hire sell stolen mailboxes and private data Read More »

ISG and Shift Technology deliver fraud mitigation services to customers

Insight Service Group (ISG) and Shift Technology announced the two organizations have entered into a partnership. As a result, insurance carriers, third party administrators and self-insured organizations in the workers’ compensation, and property and casualty markets can detect, intervene, and mitigate suspicious claim activity through the strategic use of integrated technology and investigation services. Shift …

ISG and Shift Technology deliver fraud mitigation services to customers Read More »

Resechers find new way to insert backdoor in JavaScript code with invisible characters

Cybersecurity specialists described a new method to hide backdoors hidden in JavaScript thanks to the use of Unicode characters that are invisible or can be easily confused with other characters. This technique allows malicious code to evade detection, even during a thorough scan. This method was inspired by a Subreddit post documenting a developer’s difficulties …

Resechers find new way to insert backdoor in JavaScript code with invisible characters Read More »

ZEDEDA partners with PTC to scale industrial IoT solution deployments at the edge

ZEDEDA announced it joined the PTC Partner Network as part of the ThingWorx Ready program. The PTC ThingWorx Ready program enables technology companies to validate their products’ interoperability with the ThingWorx IIoT platform. A ThingWorx Ready designation makes a product available on the PTC Marketplace, where PTC partners and customers can access and promote IIoT …

ZEDEDA partners with PTC to scale industrial IoT solution deployments at the edge Read More »

DomainTools acquires Farsight Security to enhance its threat intelligence capabilities

DomainTools announced the acquisition of Farsight Security, a provider of DNS intelligence and passive DNS cyber security data solutions. The acquisition comes as a natural extension of both companies’ long-standing partnership to deliver Farsight’s passive DNS data via the DomainTools Iris investigation platform to assess risk, map attacker infrastructure, and rapidly increase visibility and context …

DomainTools acquires Farsight Security to enhance its threat intelligence capabilities Read More »

Contrast Security raises $150M to advance application security

Contrast Security announced that it has closed $150M in a Series E round of funding at a greater than billion-dollar valuation. The oversubscribed round was led by Liberty Strategic Capital, founded by former Secretary of the Treasury Steven Mnuchin, together with 100% participation from existing Contrast investors Warburg Pincus, Battery Ventures, General Catalyst, Microsoft’s M-12 …

Contrast Security raises $150M to advance application security Read More »

Edge to Cloud: How Do We Get There from Here?

In industrial automation, we spend a lot of time focused on connecting things at the edge and doing something useful with data. This might include machine-to-machine automation, edge decision making, or passing data to business systems (think CMMS, ERP, and MES). In my last blog, I discussed data acquisition and protocol management, the integration of …

Edge to Cloud: How Do We Get There from Here? Read More »

[webapps] Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (3)

# Exploit Title: Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (3) # Date: 11/11/2021 # Exploit Author: Valentin Lobstein # Vendor Homepage: https://apache.org/ # Software Link: https://github.com/Balgogan/CVE-2021-41773 # Version: Apache 2.4.49/2.4.50 (CGI enabled) # Tested on: Debian GNU/Linux # CVE : CVE-2021-41773 / CVE-2021-42013 # Credits : Lucas Schnell #!/usr/bin/env python3 #coding: utf-8 …

[webapps] Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (3) Read More »

[webapps] FormaLMS 2.4.4 – Authentication Bypass

# Exploit Title: FormaLMS 2.4.4 – Authentication Bypass # Google Dork: inurl:index.php?r=adm/ # Date: 2021-11-10 # Exploit Author: Cristian ‘void’ Giustini @ Hacktive Security # Vendor Homepage: https://formalms.org # Software Link: https://formalms.org # Version: <= 2.4.4 # Tested on: Linux # CVE : CVE-2021-43136 # Info: An authentication bypass issue in FormaLMS <= 2.4.4 allows …

[webapps] FormaLMS 2.4.4 – Authentication Bypass Read More »

[dos] AbsoluteTelnet 11.24 – 'Phone' Denial of Service (PoC)

# Exploit Title: AbsoluteTelnet 11.24 – ‘Phone’ Denial of Service (PoC) # Discovered by: Yehia Elghaly # Discovered Date: 2021-11-10 # Vendor Homepage: https://www.celestialsoftware.net/ # Software Link : https://www.celestialsoftware.net/telnet/AbsoluteTelnet32.11.24.exe # Tested Version: 11.24 # Vulnerability Type: Denial of Service (DoS) Local # Tested on OS: Windows 7 Professional x86 SP1 – Windows 10 x64 # …

[dos] AbsoluteTelnet 11.24 – 'Phone' Denial of Service (PoC) Read More »

[dos] AbsoluteTelnet 11.24 – 'Username' Denial of Service (PoC)

# Exploit Title: AbsoluteTelnet 11.24 – ‘Username’ Denial of Service (PoC) # Discovered by: Yehia Elghaly # Discovered Date: 2021-11-10 # Vendor Homepage: https://www.celestialsoftware.net/ # Software Link: https://www.celestialsoftware.net/telnet/AbsoluteTelnet32.11.24.exe # Tested Version: 11.24 # Vulnerability Type: Denial of Service (DoS) Local # Tested on OS: Windows 7 Professional x86 SP1 – Windows 10 x64 # Description: …

[dos] AbsoluteTelnet 11.24 – 'Username' Denial of Service (PoC) Read More »

[webapps] YeaLink SIP-TXXXP 53.84.0.15 – 'cmd' Command Injection (Authenticated)

# Exploit Title: YeaLink SIP-TXXXP 53.84.0.15 – ‘cmd’ Command Injection (Authenticated) # Date: 11-10-2021 # Exploit Author: tahaafarooq # Vendor Homepage: https://www.yealink.com/ # Version: 53.84.0.15 # Tested on: YeaLink IP Phone SIP-T19P (Hadrware VOIP Phone) Description: Using Diagnostic tool from the Networking Tab to perform a Ping or Traceroute , to perform OS command injection …

[webapps] YeaLink SIP-TXXXP 53.84.0.15 – 'cmd' Command Injection (Authenticated) Read More »

Avint names Lisa Starkweather as COO

Avint announced that it has hired cyber defense executive Lisa Starkweather as chief operating officer. In this newly created role, Starkweather will manage daily operations for the company’s rapidly expanding government customer portfolio, focused on providing solutions for the most complex security challenges facing federal systems. “We are thrilled to have Lisa join our executive …

Avint names Lisa Starkweather as COO Read More »

Patch these new 8 critical vulnerabilities in Samba

Information security specialists reported the detection of 8 security vulnerabilities in Samba, the well-known free software re-implementation of the SMB networking protocol initially developed by Andrew Tridgell. According to the report, successful exploitation of these flaws could result in severe damage to the affected implementations. Below are brief descriptions of the reported flaws, in addition …

Patch these new 8 critical vulnerabilities in Samba Read More »

Audrey Zhao joins CloudBees as CFO

CloudBees named Audrey Zhao as chief financial officer (CFO). Zhao will report to CloudBees CEO Stephen DeWitt and will oversee accounting, business operations, financial planning and analysis, legal, and procurement. Zhao joins CloudBees as the company enters an era of accelerated growth and expansion. CloudBees is poised to capitalize on the market demand for software …

Audrey Zhao joins CloudBees as CFO Read More »

The Supreme Court Denies Certiorari in American Civil Liberties Union v. United States

On November 1, 2021, the Supreme Court denied a petition for a writ of certiorari in American Civil Liberties Union v. United States. In its petition, the American Civil Liberties Union (ACLU) sought the Supreme Court’s review of the Foreign Intelligence Surveillance Court (FISC) and the Foreign Intelligence Surveillance Court of Review’s (FISCR) decisions declining …

The Supreme Court Denies Certiorari in American Civil Liberties Union v. United States Read More »

AttackIQ appoints Ken Schock as CRO

AttackIQ announced the appointment of Ken Schock as Chief Revenue Officer (CRO). Schock joins effective immediately to oversee revenue strategy and functions amid accelerating company growth. Schock is an accomplished sales veteran with over three decades of experience driving growth at Hewlett-Packard, BMC Software, VMware, Splunk and Cloudera. Most recently, he served as CRO at …

AttackIQ appoints Ken Schock as CRO Read More »

Preventing Credential Theft by RedLine Stealer Malware

Authored by: Gorgang Joshi and Chandan S – A credential-based attack occurs when an attacker steals credentials, extends privileges, and compromises critical data. Credential theft is the first stage of a lateral movement attack and stopping the attack early in the process can make a material impact on the success and damages incurred by an …

Preventing Credential Theft by RedLine Stealer Malware Read More »

Paddle achieves SOC 2 certification to meet the highest data security standards

Paddle announces that it has successfully completed a Service Organization Control (SOC) 2 Type 1 audit, underscoring the company’s ability to meet the highest data security standards. More than 2,000 software sellers rely on Paddle’s platform to sell into over 245 markets globally, and this means trusting Paddle with their data – from customer records …

Paddle achieves SOC 2 certification to meet the highest data security standards Read More »

Aleksandr Zhukov, self-described 'king of fraud,' is sentenced to 10 years

Written by Jeff Stone Nov 10, 2021 | CYBERSCOOP A Russian man who once described himself as the “king of fraud” for his role in orchestrating a multimillion dollar crime spree was sentenced Wednesday to 10 years in prison. Aleksandr Zhukov, 41, was convicted in May of defrauding U.S. advertising companies out of $7 million …

Aleksandr Zhukov, self-described 'king of fraud,' is sentenced to 10 years Read More »

VMware discloses a severe flaw in vCenter Server that has yet to fix

VMware announced it is working on patches for an important severity privilege escalation vulnerability affecting vCenter Server. VMware announced it’s working on security patches to address an important severity privilege escalation vulnerability, tracked as CVE-2021-22048, in its vCenter Server. vCenter Server is the centralized management utility for VMware and is used to manage virtual machines, multiple …

VMware discloses a severe flaw in vCenter Server that has yet to fix Read More »