Microsoft named a Leader in IDC MarketScape for Modern Endpoint Security for Enterprise and Small and Midsize Businesses

The security stakes have never been higher and, consequently, the protection of endpoints as a key component of any extended detection and response XDR strategy has never been more critical—for organizations of all sizes. Microsoft is thrilled to be recognized as a Leader in IDC’s MarketScape...

The hunt for NOBELIUM, the most sophisticated nation-state attack in history

This is the second in a four-part blog series on the NOBELIUM nation-state cyberattack. In December 2020, Microsoft began sharing details with the world about what became known as the most sophisticated nation-state cyberattack in history. Microsoft’s four-part video series “Decoding NOBELIUM”...

Moderate: Red Hat Security Advisory: Release of components for Service Telemetry Framework 1.3.3 - Container Images

Release of components for the Service Telemetry Framework Service Telemetry Framework STF provides automated collection of measurements and data from remote clients, such as Red Hat OpenStack Platform or third-party nodes. STF then transmits the information to a centralized, receiving Red Hat...

Security fix for the ALT Linux 10 package thunderbird version 91.3.0-alt1

91.3.0-alt1 built Nov. 10, 2021 Andrey Cherepanov in task 288818 Nov. 3, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets + CVE-2021-38504 Use-after-free in file picker dialog + CVE-2021-38505 Windows 10 Cloud Clipboar...

Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor (PRM) Model 3120 Access Control Error Vulnerability

The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is a portable cardiac rhythm management Crm programming system from Boston Scientific, Inc. The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is vulnerable to an access control error that...

MQTT 缓冲区错误漏洞

MQTT Message Queuing Telemetry Transport is a messaging protocol based on the Publish/Subscribe paradigm under the ISO standard ISO/IEC PRF 20922, which works on the TCP/IP protocol family and is designed as a publish/subscribe messaging protocol for remote devices with low hardware performance a...

Azure File Sync Agent v14 Release – October 2021

Azure File Sync Agent v14 Release – October 2021 This article describes the improvements and issues that are fixed in the Azure File Sync Agent v14 release that is dated October 2021. Additionally, this article contains installation instructions for this release. Improvements and issues that are...

SysFlow - Cloud-native System Telemetry Pipeline

This repository hosts the documentation and issue tracker for all SysFlow projects. Quick reference Documentation : the SysFlow Documentation Where to get help : the SysFlow Community Slack Where to file issues : the github issue tracker Source of this description : repo's readme history Docker...

Security fix for the ALT Linux 9 package glpi version 9.5.6-alt1

9.5.6-alt1 built Oct. 18, 2021 Pavel Zilke in task 287044 Oct. 12, 2021 Pavel Zilke - New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie...

The vulnerability of the Moxa MXView network control software, related to deficiencies in access control, allows a violator to circumvent security restrictions.

The vulnerability of the Moxa MXView network control software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass security restrictions using the MQTT protocol Message Queuing Telemetry Transport...

Metasploit Wrap-Up

Telemetry is for gathering data, not executing commands as root, right?... This week's highlight is a new exploit module by our own wvu for VMware vCenter Server CVE-2021-22005, a file upload vuln that arises from a flaw in vCenter’s analytics/telemetry service, which is enabled by default...

Encrypted & Fileless Malware Sees Big Growth

A full 91.5 percent of malware was delivered using HTTPS-encrypted connections in the second quarter, researchers said, making attacks more evasive. That’s according to WatchGuard Technologies’ latest report on findings within its telemetry, which also found that these detections come primarily...

CVE-2021-38392

A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region and could use this setting to interrogate or program an implantable device in any region in the world...

Hardcoded credentials

A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region and could use this setting to interrogate or program an implantable device in any region in the world...

CVE-2021-38392

The CVE-2021-38392 entry concerns the Boston Scientific Zoom Latitude Programmer/Recorder/Monitor (PRM) Model 3120. The vulnerability is an improper access control that could allow a skilled attacker with physical access to gain access to the device’s hard drive, change the telemetry region, and ...

CVE-2021-38392 Improper Access Control for Boston Scientific Zoom Latitude

A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region and could use this setting to interrogate or program an implantable device in any region in the world...

PT-2021-22106 · Boston Scientific · Zoom Latitude +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region. This...

Fedora: Security Advisory for mosquitto (FEDORA-2021-dc6df3744a)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The Top Ransomware Threats Aren’t Who You Think

While there seem to be legions of ransomware gangs, it turns out that just a handful of ransomware-as-a-service RaaS actors dominate the entire ecosystem of encryption-attack threats. In fact, just three ransomware families, none of them household names, make up 64 percent of all threats detected...

Boston Scientific Zoom Latitude Programmer/Recorder/Monitor Model 3120 访问控制错误漏洞

The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is a portable cardiac rhythm management Crm programming system from Boston Scientific, Inc. The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is vulnerable to an access control error that...