Ken's Automated News Feed Aggregator
By Larry Loeb. The pandemic is accelerating the move to location-distributed work. Want to know how the rush into remote work has weakened the cybersecurity posture of companies? You can find plenty of proof on dark web marketplaces. Threat actors have…
Continue ReadingBy 07/14/2020.
Microsoft on Tuesday released July security patches , addressing a total of 123 common vulnerabilities and exposures (CVEs). This hefty patch bundle represents the fifth consecutive month this year in which the count exceeded 110 CVEs, …
Continue ReadingBackground. Today is July 2020 Patch Tuesday, and Microsoft has released updates/fixes for multiple vulnerabilities. One of them is a critical vulnerability with a CVSS score of 10. What is the issue? Windows DNS Server Remote Code Execution Vulnerabil…
Continue ReadingAfter news of hacks into water systems in Israel and a key port in Iran surfaced at the start of Q2, concerns over the threat of cyberattacks on critical networks in the Middle East have been dialled up, writes Maddy White. When Israeli authorities ack…
Continue ReadingSummary. Microsoft released a patch to address CVE-2020-1350 , a remote code execution vulnerability in Windows DNS Server. Exploiting the vulnerability, dubbed “SIGRed,” could allow a threat actor to gain Domain Administrator rights over the server an…
Continue ReadingI first want to thank eLearnSecurity for creating such a course on this topic of exploit development. I have always been a big fan of the Windows operating system. For the past few years, I have spent a lot of time on Windows reverse engineering, Windo…
Continue ReadingMicrosoft today patched a critical and wormable remote code execution (RCE) vulnerability in the Windows DNS Server that affects Windows Server versions 2003 to 2019. The likelihood of exploitation is high, according to the Check Point researchers who …
Continue ReadingIn production, SAP is a big deal for the companies that own it. In many cases, they have spent tens of millions in capital to buy it and millions more annually to operate it. When a serious vulnerability like this is released, there will be a significa…
Continue ReadingThe Linux Mint distribution is based on Debian and Ubuntu, providing over 30,000 packages from these projects. These packages are provided using the well-known APT packaging system used by both upstream distributions. Ubuntu, however, in 2014 started d…
Continue ReadingSAP customers should update their installations to close a security vulnerability that can be exploited to commandeer the software by anyone who can reach it. Dubbed RECON , aka Remotely Exploitable Code On NetWeaver, by its discoverers, security shop …
Continue Reading