November 22, 2024 at 06:01AM A VulnCheck report identifies 15 critical vulnerabilities in various software products, with 400,000 internet-accessible hosts at risk. Eight flaws were exploited as zero-days, some even prior to patch releases. The report highlights significant threat actor activity, recommending organizations enhance risk visibility and patch management to mitigate exposure. ### Meeting Takeaways … Read more
October 14, 2024 at 09:15AM Tor browser version 13.5.7 is being released to address a zero-day vulnerability that was recently exploited, highlighting security concerns for Tor users related to Firefox. The update aims to enhance protection against such threats. **Meeting Takeaways:** 1. **Tor Browser Update**: Version 13.5.7 of the Tor browser is being rolled out. … Read more
October 2, 2024 at 02:40AM German researchers have identified vulnerabilities and operational challenges in the Resource Public Key Infrastructure (RPKI) protocol. RPKI was meant to secure the Border Gateway Protocol (BGP) and enhance internet routing security. However, the researchers found potential backdoors, supply chain attacks, and difficulties in patching vulnerabilities. They believe RPKI requires significant … Read more
September 11, 2024 at 07:07AM During Black Hat, watchTowr Labs researchers discovered vulnerabilities in the WHOIS protocol. They purchased an expired domain to demonstrate its potential misuse. The findings revealed that numerous organizations and government entities were still querying the expired domain, highlighting serious security concerns. The researchers also identified vulnerabilities in TLS/SSL certificate authorities, … Read more
July 18, 2024 at 01:54PM Researchers discovered a fake ad blocker in China targeting Internet cafés that conceals sophisticated malware. “HotPage.exe,” approved by Microsoft, appears as adware but can intercept web traffic, introduce more ads, and drop a system-level driver. ESET reported it to Microsoft, who removed it on May 1. The malware is developed … Read more
July 3, 2024 at 02:07PM OVHcloud, a major European cloud services provider, successfully mitigated a record-breaking DDoS attack earlier this year, reaching 840 Mpps and stemming from compromised MikroTik network devices. The company has observed a trend of escalating attack sizes and frequency. The high processing power of MikroTik devices poses a significant threat, with … Read more
June 29, 2024 at 11:45AM Google has announced it will block websites using certificates from Entrust in Chrome browser from November 1, 2024 due to compliance and security issues. TLS certificates from Entrust will not be trusted by Chrome versions 127 and higher. Users will see a warning for insecure connections, urging website operators to … Read more
June 28, 2024 at 04:15PM Wireless providers prioritize uptime and lag time at the expense of security, leaving users vulnerable to attacks. At Black Hat 2024, Penn State researchers will reveal how hackers can exploit 5G to intercept Internet traffic, leading to spying and phishing. The researchers have reported vulnerabilities to 5G vendors, but a … Read more
June 28, 2024 at 10:36AM Google is ending its trust in Entrust due to a history of compliance and general improvement failures. From November 1 in Chrome 127, TLS server authentication certificates using Entrust or AffirmTrust roots won’t be trusted by default. This may require website owners to choose a new CA owner to avoid … Read more
June 21, 2024 at 10:30AM Tor Browser 13.5 has been released, focusing on usability enhancements for Android and desktop versions. The updates include improved bridge management, redesigned letterboxing, and simplified onion site error messages for desktop. For Android, the release introduces a new connection experience and relocates Tor logs, aiming to bridge the feature gap … Read more