Category: Uncategorized

Check out this interesting piece looking into the latest RDP bugs (CVE-2019-1181 & CVE-2019-1182) patched by Microsoft in August. Read More: DejaBlue

VideoLAN has released an updated version of its VLC Player to fix over a dozen bugs. Source: VLC Media Player Allows Desktop Takeover Via Malicious Video Files

Talos is publishing a glimpse into the most prevalent threats we’ve observed between Aug. 9 and Aug. 16. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioural characteristics, indicators of compromise, and discussing how our customers are automatically…

Over on James Sawyer’s github repos you’ll find a neat set of Python utilities that leverage the Rapid7 OSINT dataset. The Rapid7 Open Data set is a collection of Open Source Intelligence data feeds collected via their project SONAR research. This provide forward and reverse DNS records, similar to PassiveTotal or OpenDNS, HTTP and HTTPS…

Anton Lopanitsyn, a security research using the moniker Bo0om, has provided an exploit database search facility which is called sploitus.com. It seems to be receive fairly up to date exploit data. Anton seems to be quiet at the moment, but you can catch up with his exploits on his blog and via twitter. He also…

Double entendres abound with the KNOB (key negotiation of Bluetooth) attack against the basic rate/enhanced data rate (BR/EDR, or Bluetooth Classic) configuration, which could result in information disclosure and/or escalation of privileges. Source: New Bluetooth Vulnerability Allows Attackers to Intercept Traffic

It looks like a busy few days ahead for Threat and Vulnerability managers as Microsoft release over 90 fixes to security bugs including patches for 4 new blue-keep-esque wormable RDP flaws. Trend Micro’s ZDI takes the credit for finding more Remote Desktop Services bugs, with CVE-2019-1181, CVE-2019-1182, CVE-2019-1222 and CVE-2019-1226. These vulnerabilities are rated critical…

A Google security researcher has just disclosed details of a 20-year-old unpatched high-severity vulnerability affecting all versions of Microsoft Windows, back from Windows XP to the latest Windows 10. The vulnerability, which could allow a low privileged application to read and write data to a higher privileged application, resides in the way MSCTF clients and…

Talos is publishing a glimpse into the most prevalent threats we’ve observed between Aug. 2 and Aug. 9. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioural characteristics, indicators of compromise, and discussing how our customers are automatically…

If you own a device, or a hardware component, manufactured by ASUS, Toshiba, Intel, NVIDIA, Huawei, or other 15 other vendors listed below, you’re probably screwed. A team of security researchers has discovered high-risk security vulnerabilities in more than 40 drivers from at least 20 different vendors that could allow attackers to gain most privileged…