863 matches found
Zero Trust and the Slowly Boiled Frog
Disclaimer: No actual frogs were harmed in the writing of the blog post. We wouldn't do that. We like frogs. What is Zero Trust Networking? The Zero Trust security model was proposed by John Kindervag of Forrester Research back in 2010. The concept is that the traditional trust model of "trust, b...
EulerOS 2.0 SP1 : libxml2 (EulerOS-SA-2018-1070)
According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Google Chrome prior to 62.0.3202.62 and other products, allowed a remote...
How to mitigate rapid cyberattacks such as Petya and WannaCrypt
In the first blog post of this 3-part series, we introduced what rapid cyberattacks are and illustrated how rapid cyberattacks are different in terms of execution and outcome. In the second blog post, we provided some details on Petya and how it worked. In this final blog post, we will share:...
How to mitigate rapid cyberattacks such as Petya and WannaCrypt
In the first blog post of this 3-part series, we introduced what rapid cyberattacks are and illustrated how rapid cyberattacks are different in terms of execution and outcome. In the second blog post, we provided some details on Petya and how it worked. In this final blog post, we will share:...
Design/Logic Flaw
A flaw in libxml2 allows remote XML entity inclusion with default parser flags i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes. Depending on the context, this may expose a higher-risk attack surface in libxml2 not...
CVE-2017-7375
A flaw in libxml2 allows remote XML entity inclusion with default parser flags i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes. Depending on the context, this may expose a higher-risk attack surface in libxml2 not...
CVE-2017-7375
A flaw in libxml2 allows remote XML entity inclusion with default parser flags i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes. Depending on the context, this may expose a higher-risk attack surface in libxml2 not...
Meltdown and Spectre Aren’t Business as Usual
The new year brought a new vulnerability type — the CPU-based Meltdown and Spectre bugs — that’s forcing vendors and IT departments to modify long-standing ways of identifying threats, prioritizing remediation, managing patches and evaluating risk. “Meltdown and Spectre are different...
Richard Seiersen, CISO of Twilio, Joins Wallarm Board of Advisers
We are excited to welcome Richard Seiersen to Wallarm advisory team. Richard brings tons of security experience from both start-ups and global companies and unique views on making the impact of security measurable. We have asked Richard to share some of his thoughts on what’s important in cyber...
Data Masking 101 – Whiteboard Wednesday [Video]
Data masking is an effective way to protect a large majority of your organization’s data. It replaces original data with realistic, but fictional data—reducing production data sprawl and your attack surface footprint, while maintaining the data's use for things like development, analytics modelin...
Design/Logic Flaw
DISPUTED HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerability, but mor...
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerability, but more an...
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerability, but more an...
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerability, but more an...
CVE-2017-14953
CVE-2017-14953 affects Hikvision Wi‑Fi IP cameras (example: DS-2CD2432F-IW) used in wired configurations. The vulnerability arises from a default unencrypted, unauthenticated SSID (e.g., “davinci”) enabling physically proximate attackers to force association with an arbitrary access point, potent...
Holiday Season Cyberattacks May Increase By More Than 20% Starting This Week
As we approach the upcoming Thanksgiving holiday, organizations should be paying close attention to potential cyberattacks coming their way, if history offers any indication of what’s to come. According to the Carbon Black Threat Analysis Unit TAU, organizations saw a +20.5% increase in attempted...
Holiday Season Cyberattacks May Increase By More Than 20% Starting This Week
As we approach the upcoming Thanksgiving holiday, organizations should be paying close attention to potential cyberattacks coming their way, if history offers any indication of what’s to come. According to the Carbon Black Threat Analysis Unit TAU, organizations saw a +20.5% increase in attempted...
Microsoft Provides Guidance on Mitigating DDE Attacks
Despite a rash of attacks leveraging Dynamic Data Exchange fields in Office, including some spreading destructive ransomware, Microsoft has remained insistent that DDE is a product feature and won’t address it as a vulnerability. Microsoft on Wednesday did, however, put some guidance in admins’...
Striker - Offensive Information And Vulnerability Scanner
Striker is an offensive information and vulnerability scanner. Features Just supply a domain name to Striker and it will automatically do the following for you: Check and Bypass Cloudflare Retrieve Server and Powered by Headers Fingerprint the operating system of Web Server Detect CMS 197+ CMSs a...
Windows Defender Exploit Guard: 攻撃表面を縮小して次世代型マルウェアに対抗する
本記事は、Windows Security のブログ “Windows Defender Exploit Guard: Reduce the attack surface against next-generation malware” 2017 年 10 月 23 日 米国...