Author: DEFENDEDGE

  • Defending Assets You Don’t Know About Against Cyberattacks

    No security defense is perfect, and shadow IT means no company can inventory every single asset that it has. David “moose” Wolpoff, CTO at Randori, discusses strategies for core asset protection given this reality. Read more

  • BillQuick Billing App Rigged to Inflict Ransomware

    A SQL injection bug in the BillQuick billing app has not only leaked sensitive information, it’s also let malicious actors remotely execute code and deploy ransomware. Read more

  • NOBELIUM Attacks on Cloud Services and other Technologies

    Original release date: October 25, 2021 Microsoft has released a blog on NOBELIUM attacks on cloud services and other technologies. CISA urges users and administrators to review [NOBELIUM targeting delegated administrative privileges to facilitate broader attacks] and apply the necessary mitigations. This product is provided subject to this Notification and this Privacy & Use policy. Read more

  • CISA Urges Sites to Patch Critical RCE in Discourse

    The patch, urgently rushed out on Friday, is an emergency fix for the widely deployed platform, whose No. 1 most trafficked site is Amazon’s Seller Central. Read more

  • Vulnerability Summary for the Week of October 18, 2021

    Original release date: October 25, 2021   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info adobe — ops-cli Ops CLI version 2.0.4 (and earlier) is affected by a Deserialization of Untrusted Data vulnerability to achieve arbitrary code execution when the checkout_repo function is called on a maliciously crafted file.… Read more

  • Critical RCE Vulnerability in Discourse 

    Original release date: October 24, 2021 Discourse—an open source discussion platform—has released a security advisory to address a critical remote code execution (RCE) vulnerability (CVE-2021-41163) in Discourse versions 2.7.8 and earlier.  CISA urges developers to update to patched versions 2.7.9 or later or apply the necessary workarounds.  For more information, see RCE via malicious SNS… Read more

  • Malware Discovered in Popular NPM Package, ua-parser-js

    Original release date: October 22, 2021 Versions of a popular NPM package named ua-parser-js was found to contain malicious software. ua-parser-js is used in apps and websites to discover the type of device or browser a person is using from User-Agent data. A computer or device with the affected software installed or running could allow… Read more

  • Cisco SD-WAN Security Bug Allows Root Code Execution

    The high-severity bug, tracked as CVE-2021-1529, is an OS command-injection flaw. Read more

  • GPS Daemon (GPSD) Rollover Bug

    Original release date: October 21, 2021 Critical Infrastructure (CI) owners and operators, and other users who obtain Coordinated Universal Time (UTC) from Global Positioning System (GPS) devices, should be aware of a GPS Daemon (GPSD) bug in GPSD versions 3.20 (released December 31, 2019) through 3.22 (released January 8, 2021).    On October 24, 2021,… Read more

  • U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts Warn

    Meanwhile, Zerodium’s quest to buy VPN exploits is problematic, researchers said. Read more