The ICO found that the Electoral Commission did not have appropriate security measures in place, allowing hackers to access the personal details of 40 million UK voters
Daily Archives: July 30, 2024
USN-6923-2: Linux kernel vulnerabilities
Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde
discovered that an untrusted hypervisor could inject malicious #VC
interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw
is known as WeSee. A local attacker in control of the hypervisor could use
this to expose sensitive information or possibly execute arbitrary code in
the trusted execution environment. (CVE-2024-25742)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– TTY drivers;
– SMB network file system;
– Netfilter;
– Bluetooth subsystem;
(CVE-2024-26886, CVE-2023-52752, CVE-2024-36016, CVE-2024-26952,
CVE-2024-27017)
USN-6921-2: Linux kernel vulnerabilities
Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde
discovered that an untrusted hypervisor could inject malicious #VC
interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw
is known as WeSee. A local attacker in control of the hypervisor could use
this to expose sensitive information or possibly execute arbitrary code in
the trusted execution environment. (CVE-2024-25742)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– DMA engine subsystem;
– HID subsystem;
– I2C subsystem;
– PHY drivers;
– TTY drivers;
– IPv4 networking;
(CVE-2024-35997, CVE-2024-36016, CVE-2024-35990, CVE-2024-35984,
CVE-2024-35992, CVE-2024-36008)
Just One in 10 Attacks Flagged By Security Tools
How to setup PGP Keys for Encrypted Email
The content of this post is solely the responsibility of the author. LevelBlue does not adopt or endorse any of the views, positions, or information provided by the author in this article.
In today’s world, electronic mails (e-mails) serve as a medium of both official and personal correspondence. With sensitive information being shared online, it’s essential to secure your emails. Pretty Good Privacy (PGP), a robust encryption program, offers a reliable solution for securing the contents of your emails. Developed by Phil Zimmermann in 1991, PGP utilizes public-key cryptography to ensure both confidentiality and authenticity in email exchanges.
PGP uses a pair of keys consisting of a public key and a private key. The public key is like your digital address that you share with other users. Anyone with your public key can send you encrypted messages. However, they cannot read messages encrypted with your private key. The private key is like the key to your mailbox and should be kept secure. You use it to decrypt messages sent to you with your public key. To use PGP, you need a pair of keys: a public key and a private key. Here’s how to generate them:
1. Install GnuPG: First, install GnuPG, a free implementation of the OpenPGP standard. You can download it from GnuPG’s official website.
2. Generate Key Pair: Open your terminal and type the following command: gpg –full-generate-key Follow the prompts to create your key pair. Choose your preferred encryption method, key size (at least 2048 bits), and validity period.
3. Backup Your Keys: Once generated, back up your keys. Use the following commands to export them:
gpg –export -a “Your Name” > public.key
gpg –export-secret-key -a “Your Name” > private.key
Distributing Your Public Key
To receive encrypted emails, share your public key:
1. Upload to a Key Server:
gpg –send-keys your-key-id
Replace your-key-id with your actual key ID. This makes your key publicly accessible.
2. Direct sharing: Alternatively, you can send your public key file (public.key) to your contacts directly.
Encrypting and Decrypting Emails
With your key pair ready and public key shared, you can start sending and receiving encrypted emails:
Encrypting an Email:
Import the Recipient’s Public Key: First, get the recipient’s public key. Import it with this command:
gpg –import recipient-public.key
Encrypt the Message: Use the recipient’s public key to encrypt your message:
gpg –encrypt –armor –recipient recipient-email@example.com message.txt –
Replace “recipient-email@example.com” with the email address of the receiving person/entity and “message.txt” with your message file. This creates an encrypted file (usually with a .asc extension) to attach to your email.
Decrypting an Email:
Now as you have shared your public key with your target users, they will be able to send you an encrypted email using PGP(for this to work they also need to have PGP insalled). When you receive an encrypted email (typically a .asc file), decrypt it with your private key:
gpg –decrypt encrypted-message.asc
Replace “encrypted-message.asc” with the file name of the encrypted attachment. You will need to enter your private key passphrase.
Using PGP with Email Clients
While the command-line method works, it can be complicated. Thankfully, many email clients have PGP plugins to make this easier. Here are two most preferred or known:
Thunderbird with Enigmail:
Installation: Download and install Mozilla Thunderbird, a free email client. Then, install the Enigmail add-on
Configuration: Open Thunderbird, go to Enigmail settings, and import or create your PGP key pair. Enigmail integrates PGP into Thunderbird, making encryption simple.
Outlook with Gpg4win:
Installation: Download and install Gpg4win, which includes GnuPG and plugins for Outlook.
Configuration: Set up your PGP key pair in Gpg4win, then use the Outlook plugin to encrypt your emails. In addition to OpenPGP Gpg4win also supports S/MIME (X.509)
Benefits of Email Client Integrations
Ease of Use: These integrations make encryption and decryption easy within your email client.
Automatic Key Management: They handle key tasks like importing keys and managing validity of the keys.
User-Friendly Interface: The visual interface simplifies the process. For webmail services like Gmail or Yahoo Mail, browser extensions like mailvelope allows using OpenPGP for encrypting emails and ease of use.
Millions of Spoofed Emails Bypass Proofpoint Security in Phishing Campaign
Guardio Labs found that attackers exploited a configuration setting in Proofpoint’s email protection service, allowing outbound messages to bypass email protections
HealthEquity Breach Hits 4.3 Million Customers
Health savings specialist HealthEquity reveals over four million customers were impacted in a recent breach
Israeli athletes doxed at Olympic Games by Zeus hacking group
On Friday posts were published on the internet containing what appeared to be the personal information of Israeli Olympic athletes.
Read more in my article on the Hot for Security blog.
ZDI-24-1024: NI VeriStand ProjectServer Exposed Dangerous Method Denial-of-Service Vulnerability
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of NI VeriStand. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-6805.
ZDI-24-1025: NI VeriStand IFileTransferServer Exposed Dangerous Method Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of NI VeriStand. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-6805.