Timeframe: Freitag 24-09-2021 18:00 - Montag 27-09-2021 18:00
Handler: Dimitri Robl
Co-Handler: Stephan Richter
Jetzt patchen! Exploit-Code für Chrome und Edge in Umlauf
Angriffe auf die Webbrowser Chrome und Edge könnten kurz bevor stehen. Reparierte Versionen stehen zum Download bereit.
He escaped the Dark Web-s biggest bust. Now he-s back
DeSnake apparently eluded the takedown of AlphaBay and now plans to resurrect it.
BloodyStealer and gaming assets for sale
We take a closer look at threats linked to loss of accounts with popular video game digital distribution services, such as Steam and Origin. We also explore the kind of game-related data that ends up on the black market.
Video: Strings Analysis: VBA & Excel4 Maldoc, (Sat, Sep 25th)
I did record a video for my diary entry "Strings Analysis: VBA & Excel4 Maldoc", showing how to use CyberChef to analyze a maldoc.
New Android Malware Steals Financial Data from 378 Banking and Wallet Apps
The operators behind the BlackRock mobile malware have surfaced back with a new Android banking trojan called ERMAC that targets Poland and has its roots in the infamous Cerberus malware, according to the latest research. "The new trojan already has active distribution campaigns and is targeting 378 banking and wallet apps with overlays," ThreatFabrics CEO Cengiz Han Sahin said [...]
New security feature in September 2021 Cumulative Update for Exchange Server
[...] As part of our continued work to help you protect your Exchange Servers, in the September 2021 Cumulative Update (CU) we have added a new feature called the Microsoft Exchange Emergency Mitigation service. This new service is not a replacement for installing Exchange Server Security Updates (SUs), but [...]
Security updates for Monday
Security updates have been issued by Debian (kernel, libxml-security-java, and openssl), Fedora (fetchmail and python-rsa), openSUSE (grafana-piechart-panel and opera), and Red Hat (nodejs:14).
Command Injection Vulnerabilities in QVR
Two command injection vulnerabilities have been reported to affect certain QNAP EOL devices running QVR. If exploited, these vulnerabilities allow remote attackers to run arbitrary commands.
GNU C Library (glibc) vulnerability CVE-2021-33574
LibreSSL: Schwachstelle ermöglicht Denial of Service
GitHub Enterprise Server: Mehrere Schwachstellen
OpenSSH: Schwachstelle ermöglicht Privilegieneskalation
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Remote Privilege Escalation
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Hidden Backdoor Account (Write Access)
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Unauthenticated Config Download
FatPipe Networks WARP 10.2.2 Authorization Bypass
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 CSRF Add Admin Exploit
Security Bulletin: OpenSSL for IBM i is affected by CVE-2021-3711 and CVE-2021-3712
Security Bulletin: CVE-2021-2341 may affect IBM® SDK, Java- Technology Edition
Security Bulletin: IBM Planning Analytics Workspace is affected by security vulnerabilities
Security Bulletin: Integrated application server and integrated web services for IBM i are affected by CVE-2021-35517 and CVE-2021-36090
Security Bulletin: Multiple vulnerabilities in Apache HTTP Server affect IBM i
Security Bulletin: Vulnerabilities in Node.js affect IBM App Connect Enterprise and IBM Integration Bus (CVE-2020-7774)