Google Alert - site: portswigger.net/daily-swig/vulnerabilities

Researcher stops REvil ransomware in its tracks with DLL-hijacking exploit | The Daily Swig

Read full post . . . or http://www.go-que.com/researcher-stops-revil-ransomware-in-its-tracks-with-dll-hijacking-exploit-the-daily-swig

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/researcher-stops-revil-ransomware-in-its-tracks-with-dll-hijacking-exploit&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0YEnVBU5JwyIXIyTA5x8WI

John Page (hyp3rlinx), who runs malware vulnerability tracker website Malvuln.com, discovered that REvil searches for and executes DLLs in the … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/researcher-stops-revil-ransomware-in-its-tracks-with-dll-hijacking-exploit&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0YEnVBU5JwyIXIyTA5x8WI

Box, Zoom, Google Docs offer phishing boost with ‘vanity URL’ flaws | The Daily Swig – PortSwigger

Read full post . . . or http://www.go-que.com/box-zoom-google-docs-offer-phishing-boost-with-vanity-url-flaws-the-daily-swig-portswigger

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/box-zoom-google-docs-offer-phishing-boost-with-vanity-url-flaws&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0MX0npb4ooQAP6Hlbv2VST

Attack technique bypasses email filters and burnishes credibility of phishing links. A failure to properly validate vanity URLs by Box, Zoom, … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/box-zoom-google-docs-offer-phishing-boost-with-vanity-url-flaws&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0MX0npb4ooQAP6Hlbv2VST

RuTube hack: Russian video platform denies loss of source code following cyber-attack

Read full post . . . or http://www.go-que.com/rutube-hack-russian-video-platform-denies-loss-of-source-code-following-cyber-attack

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/rutube-hack-russian-video-platform-denies-loss-of-source-code-following-cyber-attack&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw3-9hFwN5v2DEjYbe9RD9OC

The Daily Swig … loss of its source code after a cyber-attack timed to coincide with Russia’s ‘Victory Day’ brought the site down this week. https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/rutube-hack-russian-video-platform-denies-loss-of-source-code-following-cyber-attack&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw3-9hFwN5v2DEjYbe9RD9OC

Russia behind cyber-attack on satellite internet network KA-SAT that disrupted Ukrainian …

Read full post . . . or http://www.go-que.com/russia-behind-cyber-attack-on-satellite-internet-network-ka-sat-that-disrupted-ukrainian

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/russia-behind-cyber-attack-on-satellite-internet-network-ka-sat-that-disrupted-ukrainian-infrastructure-eu&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw05Rtp8BaNsiKIqB8nAkewE

As reported by The Daily Swig, Microsoft researchers tracked at least 237 “cyber operations” originating from Russia that “have not only degraded … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/russia-behind-cyber-attack-on-satellite-internet-network-ka-sat-that-disrupted-ukrainian-infrastructure-eu&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw05Rtp8BaNsiKIqB8nAkewE

EU targets standardization as key to bloc-wide cyber-resilience | The Daily Swig – PortSwigger

Read full post . . . or http://www.go-que.com/eu-targets-standardization-as-key-to-bloc-wide-cyber-resilience-the-daily-swig-portswigger

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/eu-targets-standardization-as-key-to-bloc-wide-cyber-resilience&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw23NvZxFHv4kUCDHo4Dx71q

ANALYSIS The European Union (EU) wants to see greater standardization across European cybersecurity legislation and regulations, according to the … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/eu-targets-standardization-as-key-to-bloc-wide-cyber-resilience&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw23NvZxFHv4kUCDHo4Dx71q

BIG-IP: Proof-of-concept released for RCE vulnerability in F5 network management tool – PortSwigger

Read full post . . . or http://www.go-que.com/big-ip-proof-of-concept-released-for-rce-vulnerability-in-f5-network-management-tool-portswigger

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/big-ip-proof-of-concept-released-for-rce-vulnerability-in-f5-network-management-tool&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0iLUronqpt4K4dP85g9ItH

The Daily Swig … The vulnerability, tracked as CVE-2022-1388, could allow an attacker to make undisclosed requests to bypass iControl REST … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/big-ip-proof-of-concept-released-for-rce-vulnerability-in-f5-network-management-tool&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0iLUronqpt4K4dP85g9ItH

Quantum leap: Biden administration commits to ensuring US leadership in emerging tech

Read full post . . . or http://www.go-que.com/quantum-leap-biden-administration-commits-to-ensuring-us-leadership-in-emerging-tech

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/quantum-leap-biden-administration-commits-to-ensuring-us-leadership-in-emerging-tech&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw01bvj_Ok3qi2JXdqOI2C3w

… data from which might be vulnerable to “capture now, decrypt later” … told The Daily Swig: “[The] timeline for quantum computing varies, … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/quantum-leap-biden-administration-commits-to-ensuring-us-leadership-in-emerging-tech&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw01bvj_Ok3qi2JXdqOI2C3w

UK government calls for tougher protections against malicious mobile apps | The Daily Swig

Read full post . . . or http://www.go-que.com/uk-government-calls-for-tougher-protections-against-malicious-mobile-apps-the-daily-swig

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/uk-government-calls-for-tougher-protections-against-malicious-mobile-apps&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw3kqBAknKBWC6TmfaRwTv3s

The proposed policy would require stores to have a vulnerability reporting process for each app available. They would also be required to share … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/uk-government-calls-for-tougher-protections-against-malicious-mobile-apps&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw3kqBAknKBWC6TmfaRwTv3s

WordPress sites getting hacked ‘within seconds’ of TLS certificates being issued | The Daily Swig

Read full post . . . or http://www.go-que.com/wordpress-sites-getting-hacked-within-seconds-of-tls-certificates-being-issued-the-daily-swig

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/wordpress-sites-getting-hacked-within-seconds-of-tls-certificates-being-issued&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw2aH_waFUvtgMWt048tcwuW

If a hosting provider or any other entity is doing that, please report it as a vulnerability in their deployment process.” Catch up on the latest … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/wordpress-sites-getting-hacked-within-seconds-of-tls-certificates-being-issued&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw2aH_waFUvtgMWt048tcwuW

Zero-day bug in uClibc library could leave IoT devices vulnerable to DNS poisoning attacks

Read full post . . . or http://www.go-que.com/zero-day-bug-in-uclibc-library-could-leave-iot-devices-vulnerable-to-dns-poisoning-attacks

Read full post . . . or https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/zero-day-bug-in-uclibc-library-could-leave-iot-devices-vulnerable-to-dns-poisoning-attacks&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0vHoRUpYBv5NMSLpYhino0

In a DNS poisoning attack, the target domain name is resolved to the IP address of a server that’s under an attacker’s control. This means at if a … https://www.google.com/url?rct=j&sa=t&url=https://portswigger.net/daily-swig/zero-day-bug-in-uclibc-library-could-leave-iot-devices-vulnerable-to-dns-poisoning-attacks&ct=ga&cd=CAIyGjgzMjVmMTg3YzNmN2FkZTk6Y29tOmVuOlVT&usg=AOvVaw0vHoRUpYBv5NMSLpYhino0

Go Que Newsroom

Categories