15 matches found
Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike
A suspected cyber espionage activity cluster that was previously found targeting global government and private sector organizations spanning Africa, Asia, North America, South America, and Oceania has been assessed to be a Chinese state-sponsored threat actor. Recorded Future, which was tracking...
CVE-2023-21113
CVE-2023-21113 is an Android System elevation-of-privilege vulnerability caused by a confused deputy, enabling local escalation with no user interaction. Affected: Android devices; payload in multiple locations. Evidence in Android Security Bulletin shows updated AOSP versions (12, 12L, 13) and p...
CAN-2005-0102
CVE-2005-0102 affects Evolution (GNOME) via a flaw in camel-lock-helper. Connected advisories (Ubuntu USN-69-1, Debian DSA-673-1, Gentoo GLSA 200501-35, CentOS/CESA-2005:397) describe an integer/buffer handling issue in camel-lock-helper that could allow local privilege escalation or code executi...
Choosing an AI-SPM tool: The four questions every security organization needs to ask
Ensure you are staying secure as your organization adopts AI by following these four guiding questions...
Gartner® Report: Questions to Ask When Selecting an MDR Provider
Measuring against the right criteria The “right” criteria is whatever works to further your security organization’s specific needs in detection and response D&R. There’s only so much budget to go around—and successfully obtaining a significant year-over-year increase can be rare. The last thing...
编号已被CVE保留
No details are available at this time...
Perspectives of a former CISO: Disrupted security in digitalization
My passion is the connection of security to the business objectives, and it has been a part of my work with many CISOs across industries as well as my experience as a CISO. This blog series a compilation of my learnings as a CISO, as well as learnings from peers and customers who are actively...
The Missing Trends in M-Trends 2017
FireEye released the 2017 edition of the Mandiant M-Trends report yesterday. I've been a fan of this report since the 2010 edition, before I worked at the company. Curiously for a report with the name "trends" in the title, this and all other editions do not publish the sorts of yearly trends I...
How do I get my data out of Nexpose? Answer: SQL Query Export
Do any of these these questions sound familiar? "Printable reports are really valuable and I use them on a daily basis. However, is there a section that I can add to show a summary by asset group or site?" "I really like the XML format, but its a little hard to process and I have to write code to...
Digital privacy, Internet Surveillance and The PRISM - Enemies of the Internet
If you have followed the startling revelations about the scope of the US government's surveillance efforts, you may have thought you were reading about the end of privacy, and about the Enemies of the Internet. "My computer was arrested before I was." a perceptive comment by an internet activist...
Where should CISO report?
A key question faced by many organizations in defining the role and responsibilities of the security organization, is where to align the most senior information security executive, typically referred to as the Chief Information Security Officer or CISO. To answer this question it is important to...
Experts Discuss Stuxnet's Long-Term Impact on Cybersecurity
Stuxnet has both fascinated and horrified the cybersecurity community throughout 2010. Its multiple zero-day exploits, stealth capabilities, and precise control over industrial machinery mark it as a prime example of advanced cyber threats. Stuxnet represents both a nightmare and a dream for...
PHP 4.x < 4.4.5, 5.x < 5.2.1 Multiple Integer Overflow Vulnerabilities
PHP is prone to multiple integer overflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescriptio...
Interview:w00w00
w00w00 One of the first to respond to a request for an interview was w00w00 pronounced "woo-woo", their website . A group highly respected among those who are interested in security issues - they have discovered a lot of holes in security systems, many interesting tactics of hacker attacks. The...
e-Post SPA-PRO 4.01 - 'imap' Remote Buffer Overflow
// // e-Post SPA-PRO Mail @Solomon SPA-IMAP4S 4.01 Service Buffer Overflow // Vulnerability // // Bind Shell POC Exploit for Japanese Win2K SP4 // 31 May 2005 // // This POC code binds shell on port 2001 of a vulnerable e-Post // SPA-PRO Mail @Solomon IMAP server. // // This POC assumes default...