Ken's Automated News Feed Aggregator
As we sit here at the beginning of April, it is sometimes hard to remember that it was Nov. 17, 2019, when China discovered a virus emanating from a central fish and wildlife market in the city of Wuhan. The virus has become known as Novel Coronavirus …
Continue ReadingIntroduction. In this 5 part series we will be showing ways that attackers gain internal access by attacking services that companies commonly expose to the internet to facilitate remote work. We will highlight the following 5 of scenarios: Application …
Continue ReadingThe [email protected] team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
Synthesis of the vulnerability An attacker can create a memory leak via Cisco Discovery Protoco…
Continue ReadingA former Amazon Web Services (AWS) security engineer Ryan Pickren, found seven zero-day security vulnerabilities in the Safari browser (CVE-2020-3852, CVE-2020-3864, CVE-2020-3865, CVE-2020-3885, CVE-2020-3887, CVE-2020-9784, and CVE-2020-9787), of whi…
Continue ReadingThe surge in video conferencing use during these challenging times shows us the power of community and being connected digitally. Video conferencing lets us share what’s important to us in realtime and to solve problems together without having to be ph…
Continue Reading# Exploit Title: MicroStrategy Intelligence Server and Web 10.4 – multiple vulnerabilities # Exploit Author: RedTimmy Security # Authors blog: https://www.redtimmy.com/web-application-hacking/another-ssrf-another-rce-the-microstrategy-case/ # Vendor Ho…
Continue ReadingMozilla patched two Firefox browser zero-day vulnerabilities actively being exploited in the wild. The flaws, both use-after-free bugs, have been part of “targeted attacks in the wild,” according to a posted Friday. Mozilla Foundation security advisory…
Continue ReadingOver the coming years organizations will experience growing disruption as threats from the digital world have an impact on the physical. Invasive technologies will be adopted across both industry and consumer markets, creating an increasingly turbulent…
Continue ReadingThe [email protected] team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
Synthesis of the vulnerability An attacker can trigger a fatal error via Slow HTTP of FortiOS, …
Continue ReadingThe [email protected] team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
Synthesis of the vulnerability An attacker can bypass access restrictions to data via ESRS Serv…
Continue Reading