Pierluigi Paganini
May 05, 2019
A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server Critical flaw in Qualcomm chips exposes sensitive data for Android Devices Signed Malspam campaigns hit Europeans with Multi-Stage JasperLoader […]
Pierluigi Paganini
May 04, 2019
The news was reported by the Kyodo News and has caught my attention, Japan will develop its first-ever computer virus as defense against cyber attacks. The Kyodo News revealed that Japan will develop its first-ever computer virus as a defense measure against cyber attacks and that the development will be completed by next March. The […]
Pierluigi Paganini
May 04, 2019
Mozilla is going to update the Add-on Policy for Firefox to ban Firefox extensions containing obfuscated code starting from June 10, 2019. Mozilla announced a change to the Add-on Policy for Firefox to ban Firefox extensions containing obfuscated code starting from June 10, 2019. The move aims to prevent malicious extensions to threaten Firefox users. […]
Pierluigi Paganini
May 04, 2019
A security researcher discovered vulnerabilities in more than 100 plugins of the Jenkins open source software development automation server. Jenkins is the most popular open source automation server, it is maintained by CloudBees and the Jenkins community. The automation server supports developers build, test and deploy their applications, it has hundreds of thousands of active installations […]
Pierluigi Paganini
May 03, 2019
Cyber Defense Magazine May 2019 Edition has arrived. We hope you enjoy this month’s edition…packed with over 160+ pages of excellent content. Cyber Defense eMagazine for May 2019 [adrotate banner=”9″] [adrotate banner=”12″] Pierluigi Paganini (SecurityAffairs – Cyber Defense Magazine, hacking) [adrotate banner=”5″] [adrotate banner=”13″]
Pierluigi Paganini
May 03, 2019
The Human Factor has a fundamental importance for the success of a cyber attack, for this reason it is important to create a culture of cyber security within organizations. Every day we see a large number of tools being implemented within enterprises and institutions due to the need to keep their environments more secure, along […]
Pierluigi Paganini
May 03, 2019
Cisco released security patches to address tens of vulnerabilities in its products, including a critical vulnerability affecting Nexus 9000 switches. Cisco released security patches to address tens of vulnerabilities in its products. Among the flaws fixed by Cisco, there is also a critical vulnerability in Nexus 9000 switches that is tracked as CVE-2019-1804 and that […]
Pierluigi Paganini
May 03, 2019
The availability of 10KBLAZE PoC exploits for old SAP configuration issue poses a severe risk of attacks for business applications. The risk of cyber attacks against SAP systems is increased after security researchers released PoC exploits for old SAP configuration flaws. SAP Message Server and SAP Gateway implements an access control list (ACL) mechanism to […]
Pierluigi Paganini
May 03, 2019
Employment-recruitment site Ladders exposed 13M User Records Employment-recruitment site Ladders exposed left online a misconfigured AWS-hosted database that contained 13 million user records. Sanyam Jain, a security researcher and a member of the GDI Foundation, discovered a database belonging to the employment-recruitment site Ladders left exposed online on a misconfigured AWS-hosted database. The archive contained 13 […]
Pierluigi Paganini
May 02, 2019
The APT34 Glimpse project is maybe the most complete APT34 project known so far, the popular researcher Marco Ramilli analyzed it for us. Indeed we might observe a File-based command and control (a quite unusual solution) structure, a VBS launcher, a PowerShell Payload and a covert channel over DNS engine. This last feature is the most […]
