Monday, May 10, 2021
Latest:

Recent news in security

Security Vendor 

Cisco is powering the League of Legends Mid-Season Invitational

Cisco is powering the League of Legends Mid-Season Invitational More RSS Feed for Cisco: newsroom.cisco.com/rss-feeds …The Network: Security NewsRead More

Security Vendor 

Episode 116: Packagist Patch Shows How Supply Chain Threats Could Impact WordPress

A vulnerability discovered in Packagist, which is used by Composer to manage PHP package requests, could have allowed attackers to

Security Vendor 

Protect Against Lost Or Stolen Passwords | Avast

“Meet the Features” is an ongoing series to help introduce you to specific features in Avast products. It’s meant to

Vendor

CERTs

Vulnerabilities

Cisco is powering the League of Legends Mid-Season Invitational

Episode 116: Packagist Patch Shows How Supply Chain Threats Could Impact WordPress

Protect Against Lost Or Stolen Passwords | Avast

Fake Covid-19 Test Results Stifle Travel | Avast

Facebook Dating Service Issues | Avast

Driving an inclusive recovery: How can Europe secure a digital and sustainable future for all?

Driving an inclusive recovery: How can Europe secure a digital and sustainable future for all?

Cisco Schedules Conference Call for Q3 Fiscal Year 2021 Financial Results

S3 Ep31: Apple zero-days, Flubot scammers and PHP supply chain bug [Podcast]

Signs You’re a Victim of Identity Theft | Avast

Windows 10 hardening ajánlások

Yanac

A szlovák CERT egy régiót érintő, jelentős mértékű kibertámadásra figyelmeztet

Yanac

Cyber insurance guidance

RT @ail_project: In the next release of @ail_project there is a new crawler manager. It allows to have distributed crawlers on dedicated in…

RT @MISPProject: MISP 2.4.140 released with OpenID support, cross object references in extended events and many improvements. A minor secur…

@ClausHoumann @abuse_ch ThreatFox produces a MISP event feed and you can directly integrate it in any MISP sharing… https://t.co/IN60sUvKIr

RT @MISPProject: Many new and updated feeds from @DataPlaneOrg https://t.co/ESkcJSk0M7 are now available in MISP. Thanks to @jtkristoff for…

RT @CERTEU: Critical Vulnerabilities Affecting F5 Devices (CERT-EU Security Advisory 2021-015) – https://t.co/9bFk6eAgb5

“Windows DNS Server Remote Code Execution Vulnerability” Five vulnerabilities, easy to trigger and Dynamic Update i… https://t.co/2VQvWgNGc0

“Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-… https://t.co/6yCFhaJBU1

Cellebrite UFED sérülékenység kihasználása

SZ

VMSA-2021-0006

CVE-2021-3036 PAN-OS: Administrator secrets are logged in web server logs when using the PAN-OS XML API incorrectly (Severity: MEDIUM)

CVE-2021-3038 GlobalProtect App: Windows VPN kernel driver denial of service (DoS) (Severity: MEDIUM)

CVE-2021-3037 PAN-OS: Secrets for scheduled configuration exports are logged in system logs (Severity: LOW)

CVE-2021-3035 Bridgecrew Checkov: Unsafe deserialization of Terraform files allows code execution (Severity: MEDIUM)

VMSA-2021-0004

VMSA-2021-0005

VMSA-2021-0004

VMSA-2021-0004