Business Email Compromise (BEC): Tracking a Threat Actor’s Funny Business
Executive Summary In a recent LevelBlue incident response engagement, an analyst in our managed detection and response (MDR) security operations center (SOC) responded to an...
Polish Prosecutors Step Up Probe into Pegasus Spyware Operation
Polish prosecutors investigating a massive political spying operation have seized Pegasus from a government agency Read More
Sellafield Pleads Guilty to Historic Cybersecurity Offenses
UK’s most hazardous nuclear site, Sellafield, has admitted criminal charges related to IT security failings Read More
SEC Consult SA-20240620-0 :: Arbitrary File Upload in edu-sharing (metaVentis GmbH)
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 23 SEC Consult Vulnerability Lab Security Advisory < 20240620-0 > ======================================================================= title: Arbitrary File Upload...
Zip Slip meets Artifactory: A Bug Bounty Story
Posted by Egidio Romano on Jun 23 Hello list, Just wanted to share with you my latest blog post: https://karmainsecurity.com/zip-slip-meets-artifactory-a-bug-bounty-story Enjoy it! Read More
Backdoor.Win32.Plugx / Insecure Permissions
Posted by malvuln on Jun 23 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/eeb631127f1b9fb3d13d209d8e675634.txt Contact: malvuln13 () gmail com Media:...
[SBA-ADV-20240321-01] CVE-2024-5676: Paradox IP150 Internet Module Cross-Site Request Forgery
Posted by SBA Research Security Advisory via Fulldisclosure on Jun 23 # Paradox IP150 Internet Module Cross-Site Request Forgery # Link: https://github.com/sbaresearch/advisories/tree/public/2024/SBA-ADV-20240321-01_Paradox_Cross_Site_Request_Forgery ## Vulnerability Overview...
DSA-5715-2 composer – regression update
The update for composer released as DSA 5715 introduced a regression in the handling of git feature branches. Updated composer packages are now available to...
python-PyMySQL-0.9.3-2.el7
FEDORA-EPEL-2024-28e58f443c Packages in this update: python-PyMySQL-0.9.3-2.el7 Update description: Security fix for CVE-2024-36039 Read More
libreswan-4.15-1.fc39
FEDORA-2024-07c9cfd337 Packages in this update: libreswan-4.15-1.fc39 Update description: Update to 4.15 for CVE-2024-3652 Read More