Cisco 220 Series Public Exploit Available

Cisco warns that public exploits for vulnerabilities to its Cisco 220 Series smart switches are available and should be upgraded to firmware release as soon as possible.

See more: Cisco 220 Series Smart Switches Exploit.


Researcher Discloses Second Steam Zero-Day After Valve Bug Bounty Ban

More Woes for Valve after they banned a security researcher from its bug bounty program, the same researcher discovers another zero-day vulnerability affecting the Steam gaming client.

Source: Researcher Discloses Second Steam Zero-Day After Valve Bug Bounty Ban

Threat Roundup for August 9 to August 16

Talos is publishing a glimpse into the most prevalent threats we’ve observed between Aug. 9 and Aug. 16. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioural characteristics, indicators of compromise, and discussing how our customers are automatically protected from these threats.

Source: Threat Roundup for August 9 to August 16

Python Tool Leveraging Rapid7’s Open Data OSINT Dataset

Over on James Sawyer’s github repos you’ll find a neat set of Python utilities that leverage the Rapid7 OSINT dataset.

The Rapid7 Open Data set is a collection of Open Source Intelligence data feeds collected via their project SONAR research. This provide forward and reverse DNS records, similar to PassiveTotal or OpenDNS, HTTP and HTTPS GET responses, SSL Certificate data, UDP and TCP scans and other data.

These can be used to bolster any threat intelligence offering.

For further details see James’ site. Exploit Search Database


Anton Lopanitsyn, a security research using the moniker Bo0om, has provided an exploit database search facility which is called It seems to be receive fairly up to date exploit data.

Anton seems to be quiet at the moment, but you can catch up with his exploits on his blog and via twitter. He also publishes various code experiments and exploits on his github pages, with a particularly useful looking fuzzing repo which you could use in OWASP ZAP, BURP Suite or similar.

New Bluetooth Vulnerability Allows Attackers to Intercept Traffic

Double entendres abound with the KNOB (key negotiation of Bluetooth) attack against the basic rate/enhanced data rate (BR/EDR, or Bluetooth Classic) configuration, which could result in information disclosure and/or escalation of privileges.

Source: New Bluetooth Vulnerability Allows Attackers to Intercept Traffic

Microsoft Fixes Over 90 Security Bugs in August 2019 Updates + HTTP/2 DoS Bugs

It looks like a busy few days ahead for Threat and Vulnerability managers as Microsoft release over 90 fixes to security bugs including patches for 4 new blue-keep-esque wormable RDP flaws.

Trend Micro’s ZDI takes the credit for finding more Remote Desktop Services bugs, with CVE-2019-1181, CVE-2019-1182, CVE-2019-1222 and CVE-2019-1226.

These vulnerabilities are rated critical and wormable, and only apply to Windows 7 sp1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 and all Windows 10 versions and Windows Server versions after that.

In addition, HTTP/2 has just taken a bashing, with the discovery of 8 denial of service vulnerabilities which affect implementations on Apache, IIS and NGINX.


Microsoft Patches Over 90 Vulnerabilities With August 2019 Updates

HTTP/2 Implementation Flaw Expose Websites to DoS Attacks

Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows

A Google security researcher has just disclosed details of a 20-year-old unpatched high-severity vulnerability affecting all versions of Microsoft Windows, back from Windows XP to the latest Windows 10. The vulnerability, which could allow a low privileged application to read and write data to a higher privileged application, resides in the way MSCTF clients and server communicate with each other.

Source: Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows