[SECURITY] [DSA 4776-1] mariadb-10.3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4776-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 20, 2020 https://www.debian.org/security/faq -...

SSJ - Your Everyday Linux Distribution Gone Super Saiyan

SSJ is s silly little script that relies on docker installed on your everyday Linux distribution Ubuntu, Debian, etc. and magically arms it with hundreds of penetration testing and forensics tools. All of these run with almost native performance as containers utilize the host kernel and thus is a...

cgmdistribution.com Cross Site Scripting vulnerability OBB-1423097

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Why Take It to the Edge

Edge computing is the next natural paradigm shift in IT, bringing a new wave of decentralization. Over the past decade, IT has embraced two seemingly juxtaposed trends: the consolidation of infrastructure and data in private, public, or hybrid clouds, and the growing distribution and diversity of...

FIN11 Hackers Spotted Using New Techniques In Ransomware Attacks

A financially-motivated threat actor known for its malware distribution campaigns has evolved its tactics to focus on ransomware and extortion. According to FireEye's Mandiant threat intelligence team, the collective — known as FIN11 — has engaged in a pattern of cybercrime campaigns at least sin...

LatAm Banking Trojans Collaborate in Never-Before-Seen Effort

Virus Bulletin 2020 — A loose affiliation of cybercriminals are working together to author and distribute multiple families of banking trojans in Latin America – a collaborative effort that researchers say is highly unusual. Multiple, distinct malware families have plagued Latin American banking...

mapCIDR - Small Utility Program To Perform Multiple Operations For A Given subnet/CIDR Ranges

Small utility program to perform multiple operations for a given subnet/CIDR ranges. The tool was developed to ease load distribution for mass scanning operations, it can be used both as a library and as independent CLI tool. Features Simple and modular code base making it easy to contribute. CID...

[SECURITY] [DSA 4767-1] mediawiki security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4767-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 25, 2020 https://www.debian.org/security/faq -...

Security update for docker-distribution (moderate)

openSUSE Security Update: Security update for docker-distribution Announcement ID: openSUSE-SU-2020:1433-1 Rating: moderate References: 1033172 1049850 Cross-References: CVE-2017-11468 Affected Products: openSUSE Backports SLE-15-SP2 An update that solves one vulnerability and has one errata is n...

New Report Explains COVID-19's Impact on Cyber Security

Most cybersecurity professionals fully anticipated that cybercriminals would leverage the fear and confusion surrounding the Covid-19 pandemic in their cyberattacks. Of course, malicious emails would contain subjects relating to Covid-19, and malicious downloads would be Covid-19 related. This is...

OPENSUSE-SU-2020:1433-1 Security update for docker-distribution

This update for docker-distribution fixes the following issues: - Enable build on %arm which include armv6, not only on armv7 - Enable ppc64le - Use correct URL to project - Remove fillup, we don't ship a sysconfig file - Correct systemd requires - Enable build on ARM - Upgraded to 2.7.1 - Suppor...

firefox security update

68.12.0-1.0.3 - Build with rust-toolset 1.43 68.12.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Improve bindgen configuration wrt clang bmo1526857 -...

[SECURITY] [DSA 4762-1] lemonldap-ng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4762-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 07, 2020 https://www.debian.org/security/faq -...

CVE-2020-25073

This CVE affects FreedomBox (through 20.13) and the Plinth package on some Linux distros when the Apache mod_status module is enabled. The root cause is that a Tor onion service or PageKite connection is treated as local, allowing remote attackers to read sensitive data from the Apache /server-st...

[SECURITY] [DSA 4755-1] openexr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4755-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 29, 2020 https://www.debian.org/security/faq -...

Shanghai ShangPai Network Technology Co., Ltd. Ecshop Has Logic Flaw Vulnerability

Commercial ECShop - new retail open source mall system, commercial B2C open source mall system, support for PC + H5 + APP + small program mall, source code free download, suitable for enterprises to quickly build a mall website, support for two open customization. And ECShop new upgrade ECShopX,...

The vulnerability of the implementation of the dynamic memory distribution function in the Grub2 operating system’s loader allows a attacker to influence the integrity, confidentiality, and accessibility of information.

The vulnerability of the implementation of the dynamic memory distribution function in the Grub2 operating system’s loader is related to integer overflow. Exploiting this vulnerability could allow an attacker to influence the integrity, confidentiality, and accessibility of information...

[SECURITY] [DSA 4740-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4740-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 02, 2020 https://www.debian.org/security/faq -...

firefox security update

68.11.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Thu Jul 23 2020 Jan Horak - Update to 68.11.0 build1...

Malspam campaign caught using GuLoader after service relaunch

They say any publicity is good publicity. But perhaps this isnt true for CloudEye, an Italian firm that claims to provide "the next generation of Windows executables protection". First described by Proofpoint security researchers in March 2020, GuLoader is a downloader used by threat actors to...