CERT specific news

CERT announcements

  

“Citrix Gateway and Citrix ADC Security Bulletin for CVE-2022-27510 CVE-2022-27513 and CVE-2022-27516” One of the C… https://t.co/JkpigsMiDw

“Citrix Gateway and Citrix ADC Security Bulletin for CVE-2022-27510 CVE-2022-27513 and CVE-2022-27516” One of the C… https://t.co/JkpigsMiDwCIRCL Luxembourg – Computer

  

RT @LU_CIX: Join us next week at the #Luxembourg #Internet Days for the speech of Jean-Louis HUYNEN from @circl_lu on how to model and shar…

RT @LU_CIX: Join us next week at the #Luxembourg #Internet Days for the speech of Jean-Louis HUYNEN from @circl_lu on

  

The MeliCERTes project is concluding after 3-years of hard work to create an open platforms to collaborate on cyber… https://t.co/a5ZXDDwQOi

The MeliCERTes project is concluding after 3-years of hard work to create an open platforms to collaborate on cyber… https://t.co/a5ZXDDwQOiCIRCL

  

RT @MISPProject: A huge thank to all participants, organisers and speakers at @FIRSTdotOrg #FIRSTCTI22 in Berlin. It was a blast. Our MISP…

RT @MISPProject: A huge thank to all participants, organisers and speakers at @FIRSTdotOrg #FIRSTCTI22 in Berlin. It was a blast.

  

The https://t.co/WLopIGLEjT typosquatting finder service has been updated, multiple bugs were fixed and some improv… https://t.co/kZQxUQqXp1

The https://t.co/WLopIGLEjT typosquatting finder service has been updated, multiple bugs were fixed and some improv… https://t.co/kZQxUQqXp1CIRCL Luxembourg – Computer Incident

  

“There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remot… https://t.co/XzeKglLfS4

“There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remot… https://t.co/XzeKglLfS4CIRCL Luxembourg – Computer Incident

  

RT @virusbtn: The Zimperium zLabs team write about the architecture and modus operandi of the Cloud9 malicious browser extension. https://t…

RT @virusbtn: The Zimperium zLabs team write about the architecture and modus operandi of the Cloud9 malicious browser extension. https://t…CIRCL

  

RT @campuscodi: The Microsoft November 2022 Patch Tuesday updates are out. 68 vulnerabilities fixed. Also, 4 zero-days: -CVE-2022-41128, J…

RT @campuscodi: The Microsoft November 2022 Patch Tuesday updates are out. 68 vulnerabilities fixed. Also, 4 zero-days: -CVE-2022-41128, J…CIRCL Luxembourg

  

RT @cudeso: A @MISPProject tip of the week: A ‘soft’ delete propagates to other MISPs. A ‘hard’ delete removes the attribute on your instan…

RT @cudeso: A @MISPProject tip of the week: A ‘soft’ delete propagates to other MISPs. A ‘hard’ delete removes the

  

RT @MISPProject: Presentation of Cerebrate by @Iglocska at #FIRSTCTI22 the new open source tools developed in the scope of the MeliCERTes p…

RT @MISPProject: Presentation of Cerebrate by @Iglocska at #FIRSTCTI22 the new open source tools developed in the scope of the

  

RT @JeroenPinoy: The last couple of evenings I’ve been trying to help someone who fell victim to a ‘crypto investment’ scam. In short: she…

RT @JeroenPinoy: The last couple of evenings I’ve been trying to help someone who fell victim to a ‘crypto investment’

  

“November 2022 updates for Microsoft Office” https://t.co/CghoovKw1m

“November 2022 updates for Microsoft Office” https://t.co/CghoovKw1mCIRCL Luxembourg – Computer Incident Response Center Luxembourg Recent NewsRead More

  

RT @MISPProject: New MISP workflow blueprint has been added to tag ASN based on @circl_lu BGP ranking service available on https://t.co/Kad…

RT @MISPProject: New MISP workflow blueprint has been added to tag ASN based on @circl_lu BGP ranking service available on

  

RT @marcfredericgo: New workflow modules for misp…juste une tuerie @MISPProject @FIRSTdotOrg Thanks to @circl_lu for this job. https://t…

RT @marcfredericgo: New workflow modules for misp…juste une tuerie @MISPProject @FIRSTdotOrg Thanks to @circl_lu for this job. https://t…CIRCL Luxembourg –

  

NHS Covid-19 app security: two weeks on

In this blog post, Ian Levy explains how security researchers are helping make the NHS COVID-19 App better.NCSC FeedRead More

  

RT @MISPProject: MISP 2.4.162 released with a new periodic notification system, workflow updates and many improvements https://t.co/8IaviG…

RT @MISPProject: MISP 2.4.162 released with a new periodic notification system, workflow updates and many improvements https://t.co/8IaviG…CIRCL Luxembourg – Computer

  

RT @MISPProject: misp-guard has been released which is a @mitmproxy add-on that inspects MISP synchronisations. A complementary tool to…

RT @MISPProject: misp-guard has been released which is a @mitmproxy add-on that inspects MISP synchronisations. A complementary tool to…CIRCL Luxembourg

  

RT @bdekany: @ValeryMarchive Clef USB inconnue ? Bim le projet open source du @circl_lu https://t.co/CRp3LGVOS0

RT @bdekany: @ValeryMarchive Clef USB inconnue ? Bim le projet open source du @circl_lu https://t.co/CRp3LGVOS0CIRCL Luxembourg – Computer Incident Response

  

RT @GossiTheDog: Starting a new thread for two Exchange zero days being exploited in the wild. Calling it ProxyNotShell for details explai…

RT @GossiTheDog: Starting a new thread for two Exchange zero days being exploited in the wild. Calling it ProxyNotShell for

  

“A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos… https://t.co/wGzJfCDmLh

“A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos… https://t.co/wGzJfCDmLhCIRCL

  

“libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.” https://t.co/FLWJMQEsyT

“libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.” https://t.co/FLWJMQEsyTCIRCL Luxembourg – Computer Incident Response Center Luxembourg

  

RT @MISPProject: A new financial taxonomy has been incorporated in MISP taxonomies to better describe financial services and financial orga…

RT @MISPProject: A new financial taxonomy has been incorporated in MISP taxonomies to better describe financial services and financial orga…CIRCL

  

RT @digihash: @trompi @runasand @virustotal @Mandiant Just share it through the @MISPProject community and it’s available to all. The shari…

RT @digihash: @trompi @runasand @virustotal @Mandiant Just share it through the @MISPProject community and it’s available to all. The shari…CIRCL

  

RT @FDezeure: The agenda of the EU ATT&CK Workshop on 7 October is online: https://t.co/Zwwohx3FiF. Packed with inspiring lightning talks.…

RT @FDezeure: The agenda of the EU ATT&CK Workshop on 7 October is online: https://t.co/Zwwohx3FiF. Packed with inspiring lightning talks.…CIRCL

  

RT @cudeso: A @MISPProject tip of the week: The MISP modules can also be used outside MISP. Query the module server for its enabled modules…

RT @cudeso: A @MISPProject tip of the week: The MISP modules can also be used outside MISP. Query the module

  

We moved and our new office is located 122, rue Adolphe Fischer L-1521 Luxembourg. All the other details remain the… https://t.co/eiQ2gFpGYh

We moved and our new office is located 122, rue Adolphe Fischer L-1521 Luxembourg. All the other details remain the…

  

RT @MISPProject: MISP 2.4.163 released with improved periodic notification system and many improvements. #threatintel #tip #CTI #opensourc…

RT @MISPProject: MISP 2.4.163 released with improved periodic notification system and many improvements. #threatintel #tip #CTI #opensourc…CIRCL Luxembourg – Computer

  

RT @secin_lu: ⚠️ Important info: Check out the “Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” rele…

RT @secin_lu: ⚠️ Important info: Check out the “Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” rele…CIRCL Luxembourg

  

“Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” Fixes are not released unt… https://t.co/pY68pTzyzj

“Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” Fixes are not released unt… https://t.co/pY68pTzyzjCIRCL Luxembourg – Computer Incident

  

RT @MISPProject: @avuko @CISAgov @ANSSI_FR @TheHive_Project PAP was an original taxonomy proposed by Bundeswehr following a discussion with…

RT @MISPProject: @avuko @CISAgov @ANSSI_FR @TheHive_Project PAP was an original taxonomy proposed by Bundeswehr following a discussion with…CIRCL Luxembourg –

    

Számos új fukcióval bővült a MISP

A MISP (Malware Information Sharing Platform) új korrelációs motorral, új munkafolyamatokkal bővült a mostani kiadásában. FORRÁS

  

Az új közlekedési lámpa protokol (2.0) megjelent

Augusztól alkalmazandó az új Traffic Light Protocol (TLP), melyben FIRST meghatározza/pontosítja a jelölések formai követelményeit és tartalmát. FORRÁS

  

ESB-2022.3163 – [Win][UNIX/Linux] Atlassian products: CVSS (Max): None

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3163 CVE-2022-26135 – Full-Read Server Side Request Forgery

  

Reducing data exfiltration by malicious insiders

Advice and recommendations for mitigating this type of insider behaviour.NCSC FeedRead More

  

ESB-2022.3160 – [Debian] firefox-esr: CVSS (Max): 7.5

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3160 firefox-esr security update 30 June 2022 ===========================================================================

  

ESB-2022.0132.2 – UPDATE [Cisco] Cisco Adaptive Security Device Manager: CVSS (Max): 5.5

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.0132.2 Cisco Adaptive Security Device Manager Information Disclosure

  

ESB-2022.3162 – [Ubuntu] cloud-init: CVSS (Max): None

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3162 USN-5496-1: cloud-init vulnerability 30 June 2022 ===========================================================================

  

ESB-2022.3157 – [Debian] maven-shared-utils: CVSS (Max): 9.8

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3157 maven-shared-utils security update 30 June 2022 ===========================================================================

  

ESB-2022.3161 – [SUSE] Linux Kernel: CVSS (Max): 7.4

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3161 Security update for the Linux Kernel (Live

  

ESB-2022.3158 – [Debian] firejail: CVSS (Max): 7.8

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3158 firejail security update 30 June 2022 ===========================================================================

  

ESB-2022.3159 – [Debian] ublock-origin: CVSS (Max): 7.5

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3159 ublock-origin security update 30 June 2022 ===========================================================================

  

ESB-2022.3075 – [SUSE] mariadb: CVSS (Max): 7.8

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3075 Security update for mariadb 24 June 2022

  

ESB-2022.3073 – [Appliance] Secheron SEPCOS Control and Protection Relay: CVSS (Max): 9.9

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3073 Advisory (icsa-22-174-03) Secheron SEPCOS Control and Protection

  

ESB-2022.3078 – [SUSE] salt: CVSS (Max): 7.5

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3078 Security update for salt 24 June 2022

  

ESB-2022.3076 – [SUSE] php74: CVSS (Max): 7.8

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3076 Security update for php74 24 June 2022

  

ESB-2022.3079 – [SUSE] xen: CVSS (Max): 8.1

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3079 Security update for xen 24 June 2022

  

ESB-2022.3077 – [SUSE] salt: CVSS (Max): 7.5

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3077 Security update for salt 24 June 2022

  

ESB-2022.3081 – [Appliance] OFFIS DCMTK: CVSS (Max): 7.5

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3081 Advisory (icsma-22-174-01) OFFIS DCMTK 24 June 2022

  

ESB-2022.3074 – [Appliance] Pyramid Solutions EtherNet/IP Adapter Development Kit: CVSS (Max): 9.8

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3074 Advisory (icsa-22-174-04) Pyramid Solutions EtherNet/IP Adapter Development

  

ESB-2022.3069 – [Win][UNIX/Linux] Jenkins (core) and Jenkins Plugins: CVSS (Max): 8.8

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3069 Jenkins Security Advisory 2022-06-22 24 June 2022

  

ESB-2022.3071 – [Appliance] Yokogawa STARDOM: CVSS (Max): 6.3

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3071 Advisory (icsa-22-174-01) Yokogawa STARDOM 24 June 2022