by CIRT Team
Hacking groups are attacking Microsoft Exchange Servers [ehackingnews]
Various government-backed hacking groups and APTs are targeting and exploiting a vulnerability in Microsoft Exchange email servers. The vulnerability was patched last month February 2020. Volexity, a UK cyber security firm was the first to discover these exploitation attempts on Friday. But neither did they share the names of the hacking groups nor did they comment further on the matter. It is rumoured that the...
Read More
by CIRT Team
New CWE List of Common Security Weaknesses [mitre]
MITRE has released version 4.0 of the community-developed Common Weakness Enumeration (CWE) list. Previous CWE list versions describe common software security weaknesses. With version 4.0, the CWE list expands to include hardware security weaknesses. Additionally, version 4.0 simplifies the presentation of weaknesses into various views and adds a search function to enable easier navigation of the information. The CWE List of Common Security Weaknesses can...
Read More
by CIRT Team
Academics steal data from air-gapped systems using screen brightness variations [zdnet]
Academics from Israel have detailed and demoed a new method for stealing data from air-gapped computers. The method relies on making small tweaks to an LCD screen’s brightness settings. The tweaks are imperceptible to the human eye, but can be detected and extracted from video feeds using algorithmical methods. This article describes this innovative new method of stealing data, but readers should be aware from...
Read More
by CIRT Team
Facebook knows what you’re doing on other sites and in real life [businessinsider]
Facebook is watching you — but thanks to a newly-unveiled feature, it’s now possible to keep tabs on how Facebook is tracking your activity. Facebook rolled out its new “Off-Facebook Activity” tracker on Tuesday. The tool gives users an itemized list of the websites, apps, and real-life stores Facebook knows that they visited, and lets them turn off that tracking. The feature fulfills a longstanding...
Read More
by CIRT Team
Microsoft Windows CryptoAPI Spoofing Vulnerability [securityboulevard]
Today, Microsoft released patch for CVE-2020-0601, a vulnerability in windows “crypt32.dll” component that could allow attackers to perform spoofing attacks. This was discovered and reported by National Security Agency (NSA) Researchers. The vulnerability affects Windows 10 and Windows Server 2016/2019 systems. This is a serious vulnerability and patches should be applied immediately. An attacker could exploit this vulnerability by using a spoofed code-signing certificate, meaning an...
Read More
by CIRT Team
THE TOP 20 VULNERABILITIES TO PATCH BEFORE 2020 [verint]
In an ideal world, organizations would patch every new vulnerability once it’s discovered. In real-life, this is impossible. Security analysts responsible for vulnerability management activities face multiple challenges that result in what the industry calls “The Patching Paradox” – common sense tells you to keep every system up to date in order to be protected, but this is not possible due to limited resources, existence...
Read More
by CIRT Team
Massive leak leaves 267 million Facebook users’ data exposed [androidcentral]
Cybersecurity firm Comparitech and researcher Bob Diachenko say they’ve found a database containing the Facebook IDs, phone numbers, and names of 267 million users on the web. The database, they claim, was entirely exposed on the internet and did not require a password or any other form of authentication to access. They posit that the origins of the database probably lie in Facebook API abuse by criminals...
Read More
by CIRT Team
Destructive Chrome 79 Android Bug Leaves Users With No Application Data [cbronline]
Google had to force-stop the rollout of the Chrome 79 update to Android devices over the weekend following the discovery of a destructive bug that is obliterating user data on mobile applications; unfortunately the update for Android has already been offered to 50 percent of the user base. The bug discovery comes after the release last week of Chrome 79 – a major update for...
Read More
by CIRT Team
Cisco Security Appliances Targeted for DoS Attacks via Old Bug [bleepingcomputer]
A critical vulnerability fixed in mid-2018 has been resurrected recently in denial-of-service and information disclosure attempts against Cisco’s appliances Adaptive Security (ASA) and Firepower. The company is issuing a warning to its customers urging them to follow recommendations for proper mitigation actions. DoS and sensitive info Tracked as CVE-2018-0296, the vulnerability can be leveraged by an unauthenticated, remote attacker to cause the appliance to reload...
Read More
by CIRT Team
Incognito Mode Won’t Keep Your Browsing Private [medium]
The big tech giants, online advertising companies, and data brokers use a ton of tricks to track you around the web. These include things like cookies, location and device logging, fingerprinting, and even share buttons, the last of which make it very easy for companies like Facebook and Google to see what you do online, even on third-party websites. Of course, today’s users aren’t blind...
Read More
