Day: November 14, 2021

How to Close Cybersecurity Gaps in a Remote World

Backed by communication tools like Slack and Zoom, teams have had a chance to connect even while chilling in their pajamas. As a result, most companies have managed to keep up the usual performance level. However, the challenges of remote work are immense and exacerbated by technological gaps and non-secured laptops. In particular, security departments are turning up the heat. With around 55 …

How to Close Cybersecurity Gaps in a Remote World Read More »

[Control Systems] Multiple Data Distribution Service Implementations Security Advisory

Number: AV21-586Date: 15 November 2021 On 11 November 2021 ICS-CERT published an ICS Advisory to highlight vulnerabilities in the following products: Eclipse CycloneDDS – versions prior to 0.8.0 eProsima Fast DDS – versions prior to 2.4.0 (#2269) GurumNetworks GurumDDS – all versions Object Computing, Inc. (OCI) OpenDDS – versions prior to 3.18.1 Real-Time Innovations (RTI) …

[Control Systems] Multiple Data Distribution Service Implementations Security Advisory Read More »

Future ICS Security News

Yesterday’s Baton Rouge refinery shutdown was ultimately due to an attack on a building control system, according to reports this morning by… The Rafael Ravard Refinery outside of Baton Rouge, LA went into an emergency shutdown early this morning. According to Cesar Chavez, spokesp… Robotron announced today that it has received reports of attacks on …

Future ICS Security News Read More »

A Visual Summary of SANS Pen Test HackFest Summit 2021

On November 15-16, thousands from around the globe tuned in for the SANS Pen Test HackFest Summit. These two days were filled with new tools and techniques to help attendees advance their skillset. We invited Ashton Rodenhiser to create graphic recordings of our Summit presentations. If you missed a talk or are looking to view the SANS …

A Visual Summary of SANS Pen Test HackFest Summit 2021 Read More »

SANS and TechVets partner to help veterans find their path in cybersecurity

Veterans and service leavers enter the employment market with a unique set of skills. Unfortunately, these do not always translate easily into industry terminology, resulting in unemployment and under employment in the veteran community. Not-for-profit organisation TechVets teaches veterans and service leavers to combine their military experience with sought-after digital skills to gain sustainable careers …

SANS and TechVets partner to help veterans find their path in cybersecurity Read More »

[webapps] WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)

# Exploit Title: WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated) # Date: 11/11/2021 # Exploit Author: Mohammed Aadhil Ashfaq # Vendor Homepage: https://form2email.dwbooster.com/ # Version: 1.3.24 # Tested on: wordpress POC 1. Click Contact form to Email http://192.168.111.129/wp-admin/admin.php?page=cp_contactformtoemail 2. Create new form name with <script>alert(1)</script> 3. Click Publish …

[webapps] WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated) Read More »

[webapps] PHP Laravel 8.70.1 – Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF)

# Exploit Title: PHP Laravel 8.70.1 – Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF) # Date: 14/11/2021 # Exploit Author: Hosein Vita # Vendor Homepage: https://laravel.com/ # Software Link: https://laravel.com/docs/4.2 # Version: Laravel Framework 8.70.1 # Tested on: Windows/Linux # Description: We can bypass laravel image file upload functionality to upload arbitary …

[webapps] PHP Laravel 8.70.1 – Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF) Read More »

[webapps] Fuel CMS 1.4.13 – 'col' Blind SQL Injection (Authenticated)

# Exploit Title: Fuel CMS 1.4.13 – ‘col’ Blind SQL Injection (Authenticated) # Date: 2021-04-11 # Exploit Author: Rahad Chowdhury # Vendor Homepage: https://www.getfuelcms.com/ # Software Link: https://github.com/daylightstudio/FUEL-CMS/archive/1.4.13.zip # Version: 1.4.13 # Tested on: Kali Linux, PHP 7.4.16, Apache 2.4.46 Steps to Reproduce: 1. At first login your panel 2. then go to “Activity Log” …

[webapps] Fuel CMS 1.4.13 – 'col' Blind SQL Injection (Authenticated) Read More »

[webapps] Simple Subscription Website 1.0 – SQLi Authentication Bypass

# Exploit Title: Simple Subscription Website 1.0 – SQLi Authentication Bypass # Exploit Author: Daniel Haro (Dirox) # Vendor Homepage: https://www.sourcecodester.com/php/15013/simple-subscription-website-admin-panel-php-and-sqlite-source-code.html # Software Link: https://www.sourcecodester.com/php/15013/simple-subscription-website-admin-panel-php-and-sqlite-source-code.html # Version: Simple Subscription Website 1.0 # Tested on: Windows, xampp # CVE: CVE-2021-43140 – Description: SQL Injection vulnerability exists in Sourcecodester. Simple Subscription Website 1.0. An account takeover exists …

[webapps] Simple Subscription Website 1.0 – SQLi Authentication Bypass Read More »

[webapps] KONGA 0.14.9 – Privilege Escalation

# Exploit Title: KONGA 0.14.9 – Privilege Escalation # Date: 10/11/2021 # Exploit Author: Fabricio Salomao & Paulo Trindade (@paulotrindadec) # Vendor Homepage: https://github.com/pantsel/konga # Software Link: https://github.com/pantsel/konga/archive/refs/tags/0.14.9.zip # Version: 0.14.9 # Tested on: Linux – Ubuntu 20.04.3 LTS (focal) import requests import json urlkonga = “http://www.example.com:1337/” # change to your konga address identifier = …

[webapps] KONGA 0.14.9 – Privilege Escalation Read More »

[webapps] WordPress Plugin WPSchoolPress 2.1.16 – 'Multiple' Cross Site Scripting (XSS)

# Exploit Title: WordPress Plugin WPSchoolPress 2.1.16 – ‘Multiple’ Cross Site Scripting (XSS) # Date: 20/08/2021 # Exploit Author: Davide Taraschi # Vendor Homepage: https://wpschoolpress.com/ # Software Link: https://wpschoolpress.com/free-download/ # Version: up to 2.1.17 (non included) # Tested on: Ubuntu 20.04 over WordPress 5.8 and apache2 # CVE : CVE-2021-24664 # Description: The plugin sanitise …

[webapps] WordPress Plugin WPSchoolPress 2.1.16 – 'Multiple' Cross Site Scripting (XSS) Read More »

Multiple Server Failures Shuts Down Refinery

The Rafael Ravard Refinery outside of Baton Rouge, LA went into an emergency shutdown early this morning. According to Cesar Chavez, spokesperson for the refinery, the cause of the shutdown was due to multiple servers in the process control system crashing at nearly the same time. “Automatic backups did not come online,” Chavez reported; “But …

Multiple Server Failures Shuts Down Refinery Read More »

Solving Identity Theft Problems: 5 Actionable Tips

https://pixabay.com/illustrations/cyber-security-information-security-3400657/  Identity theft (or ID theft) is not a new problem, but in today’s well-connected society it is a problem that grows at an incredible rate.  Put in a few words, ID theft is when someone pretends to be someone else, using their credentials and taking various actions in their name. This can be done …

Solving Identity Theft Problems: 5 Actionable Tips Read More »

FTC shares guidance for small businesses to prevent ransomware attacks

The US Federal Trade Commission (FTC) has shared guidance for small businesses on how to increase resilience to ransomware attacks. The US Federal Trade Commission (FTC) published guidance for small businesses on how to protect their networks from ransomware attacks. The FTC suggests two steps small businesses can take to bolster their resilience against ransomware …

FTC shares guidance for small businesses to prevent ransomware attacks Read More »

3 Cybersecurity Precautions to Stay Safe When Gambling Online

Thanks to the fast advancement of technology, the iGaming industry has grown to become one of the biggest industries in the world. While there are many exciting aspects to gambling that have attracted countless players, one of the most significant issues gamblers face in the modern online world is the violation of one’s safety. Sadly, …

3 Cybersecurity Precautions to Stay Safe When Gambling Online Read More »

US Education Dept urged to boost K-12 schools' ransomware defenses

The US Department of Education and Department of Homeland Security (DHS) were urged this week to more aggressively strengthen cybersecurity protections at K-12 schools across the nation to keep up with a massive wave of attacks. The call for action comes from US Senators Maggie Hassan (D-NH), Kyrsten Sinema (D-AZ), Jacky Rosen (D-NV), and Chris Van …

US Education Dept urged to boost K-12 schools' ransomware defenses Read More »

When I emailed Overlake OB/GYN in July about a ransomware attack in 2020, I didn’t anticipate what would happen next.

In December, 2019, Overlake Medical Center & Clinics discovered that some employees had fallen for a phishing scheme. On February 7, 2020, they reported the incident to HHS as impacting 109,234 patients. As HHS subsequently summarized things: After the breach, the [Covered Entity] implemented additional administrative and technical safeguards and retrained its staff on the …

When I emailed Overlake OB/GYN in July about a ransomware attack in 2020, I didn’t anticipate what would happen next. Read More »