Defense in depth is a security strategy in which multiple security tools, mechanisms, and policies are deployed in tandem on the assumption that if one fails, another will hold. Rather than, say, relying solely on a firewall to keep hackers out of a corporate network, an organization would also deploy endpoint security software and intrusion detection systems (IDS) to spot any attacker who manages to slip past that firewall. The intention isn’t to deploy different tools to face different specific threats: rather, a defense in depth strategy assumes that an attacker manages to defeat or bypass one tool, then other tools will pick up the slack and fight back in a different way.

To read this article in full, please click here

News

Social Media Accounts Hijacked to Post Indecent Images

July 28, 2022

Read Time:3 Second

UK police urge users to switch on two-factor authentication

News

European Police Arrest 100 Suspects in BEC Crackdown

July 28, 2022

Read Time:2 Second

Invoice fraud ring targeted state-owned organizations

Advisories

ZDI-22-1031: OPC Labs QuickOPC Connectivity Explorer Deserialization of Untrusted Data Remote Code Execution Vulnerability

July 28, 2022

Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OPC Labs QuickOPC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-1032: EnterpriseDT CompleteFTP Server HttpFile Directory Traversal Arbitrary File Deletion Vulnerability

July 28, 2022

Read Time:7 Second

This vulnerability allows remote attackers to delete arbitrary files on affected installations of EnterpriseDT CompleteFTP Server. Authentication is not required to exploit this vulnerability.

Advisories

ZDI-22-1033: Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability

July 28, 2022

Read Time:12 Second

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Advisories

ZDI-22-1029: (Pwn2Own) Unified Automation OPC UA C++ Demo Server Infinite Loop Denial-of-Service Vulnerability

July 28, 2022

Read Time:9 Second

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation OPC UA C++ Demo Server. Authentication is not required to exploit this vulnerability.

Advisories

ZDI-22-1030: (Pwn2Own) Unified Automation OPC UA C++ Demo Server OpcUa_SecureListener_ProcessSessionCallRequest Improper Update of Reference Count Denial-of-Service Vulnerability

July 28, 2022

Read Time:9 Second

Cyber Security News

Monthly Archives: July 2022

booth-1.0-251.3.bfb2f92.git.fc35

FEDORA-2022-d7f95e65dd

Packages in this update:

Update description:

Hackers Change Tactics for New Post-Macro Era

Defense in depth explained: Layering tools and processes for better security

What is defense in depth?

Social Media Accounts Hijacked to Post Indecent Images

European Police Arrest 100 Suspects in BEC Crackdown

ZDI-22-1031: OPC Labs QuickOPC Connectivity Explorer Deserialization of Untrusted Data Remote Code Execution Vulnerability

ZDI-22-1032: EnterpriseDT CompleteFTP Server HttpFile Directory Traversal Arbitrary File Deletion Vulnerability

ZDI-22-1033: Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability

ZDI-22-1029: (Pwn2Own) Unified Automation OPC UA C++ Demo Server Infinite Loop Denial-of-Service Vulnerability

ZDI-22-1030: (Pwn2Own) Unified Automation OPC UA C++ Demo Server OpcUa_SecureListener_ProcessSessionCallRequest Improper Update of Reference Count Denial-of-Service Vulnerability

News, Advisories and much more