“Citrix Gateway and Citrix ADC Security Bulletin for CVE-2022-27510 CVE-2022-27513 and CVE-2022-27516” One of the C… https://t.co/JkpigsMiDwCIRCL Luxembourg – Computer
CERT specific news
CERT announcements
RT @LU_CIX: Join us next week at the #Luxembourg #Internet Days for the speech of Jean-Louis HUYNEN from @circl_lu on how to model and shar…
RT @LU_CIX: Join us next week at the #Luxembourg #Internet Days for the speech of Jean-Louis HUYNEN from @circl_lu on
The MeliCERTes project is concluding after 3-years of hard work to create an open platforms to collaborate on cyber… https://t.co/a5ZXDDwQOi
The MeliCERTes project is concluding after 3-years of hard work to create an open platforms to collaborate on cyber… https://t.co/a5ZXDDwQOiCIRCL
RT @MISPProject: A huge thank to all participants, organisers and speakers at @FIRSTdotOrg #FIRSTCTI22 in Berlin. It was a blast. Our MISP…
RT @MISPProject: A huge thank to all participants, organisers and speakers at @FIRSTdotOrg #FIRSTCTI22 in Berlin. It was a blast.
Latest
Rootpipe Reborn (Part II)
@CodeColorist continues writing about bugs, such as CVE-2019-8521 and CVE-2019-8565 that provide a mechanism to elevate privileges to root on
The https://t.co/WLopIGLEjT typosquatting finder service has been updated, multiple bugs were fixed and some improv… https://t.co/kZQxUQqXp1
The https://t.co/WLopIGLEjT typosquatting finder service has been updated, multiple bugs were fixed and some improv… https://t.co/kZQxUQqXp1CIRCL Luxembourg – Computer Incident
“There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remot… https://t.co/XzeKglLfS4
“There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remot… https://t.co/XzeKglLfS4CIRCL Luxembourg – Computer Incident
RT @virusbtn: The Zimperium zLabs team write about the architecture and modus operandi of the Cloud9 malicious browser extension. https://t…
RT @virusbtn: The Zimperium zLabs team write about the architecture and modus operandi of the Cloud9 malicious browser extension. https://t…CIRCL
RT @campuscodi: The Microsoft November 2022 Patch Tuesday updates are out. 68 vulnerabilities fixed. Also, 4 zero-days: -CVE-2022-41128, J…
RT @campuscodi: The Microsoft November 2022 Patch Tuesday updates are out. 68 vulnerabilities fixed. Also, 4 zero-days: -CVE-2022-41128, J…CIRCL Luxembourg
RT @cudeso: A @MISPProject tip of the week: A ‘soft’ delete propagates to other MISPs. A ‘hard’ delete removes the attribute on your instan…
RT @cudeso: A @MISPProject tip of the week: A ‘soft’ delete propagates to other MISPs. A ‘hard’ delete removes the
RT @MISPProject: Presentation of Cerebrate by @Iglocska at #FIRSTCTI22 the new open source tools developed in the scope of the MeliCERTes p…
RT @MISPProject: Presentation of Cerebrate by @Iglocska at #FIRSTCTI22 the new open source tools developed in the scope of the
RT @JeroenPinoy: The last couple of evenings I’ve been trying to help someone who fell victim to a ‘crypto investment’ scam. In short: she…
RT @JeroenPinoy: The last couple of evenings I’ve been trying to help someone who fell victim to a ‘crypto investment’
“November 2022 updates for Microsoft Office” https://t.co/CghoovKw1m
“November 2022 updates for Microsoft Office” https://t.co/CghoovKw1mCIRCL Luxembourg – Computer Incident Response Center Luxembourg Recent NewsRead More
RT @MISPProject: New MISP workflow blueprint has been added to tag ASN based on @circl_lu BGP ranking service available on https://t.co/Kad…
RT @MISPProject: New MISP workflow blueprint has been added to tag ASN based on @circl_lu BGP ranking service available on
RT @marcfredericgo: New workflow modules for misp…juste une tuerie @MISPProject @FIRSTdotOrg Thanks to @circl_lu for this job. https://t…
RT @marcfredericgo: New workflow modules for misp…juste une tuerie @MISPProject @FIRSTdotOrg Thanks to @circl_lu for this job. https://t…CIRCL Luxembourg –
RT @lookyloo_app: The v1.16 release is a pretty big one: thanks to Lacus, it is now possible to capture a website from another machine that…
RT @lookyloo_app: The v1.16 release is a pretty big one: thanks to Lacus, it is now possible to capture a
NHS Covid-19 app security: two weeks on
In this blog post, Ian Levy explains how security researchers are helping make the NHS COVID-19 App better.NCSC FeedRead More
RT @MISPProject: MISP 2.4.162 released with a new periodic notification system, workflow updates and many improvements https://t.co/8IaviG…
RT @MISPProject: MISP 2.4.162 released with a new periodic notification system, workflow updates and many improvements https://t.co/8IaviG…CIRCL Luxembourg – Computer
RT @MISPProject: misp-guard has been released which is a @mitmproxy add-on that inspects MISP synchronisations. A complementary tool to…
RT @MISPProject: misp-guard has been released which is a @mitmproxy add-on that inspects MISP synchronisations. A complementary tool to…CIRCL Luxembourg
RT @bdekany: @ValeryMarchive Clef USB inconnue ? Bim le projet open source du @circl_lu https://t.co/CRp3LGVOS0
RT @bdekany: @ValeryMarchive Clef USB inconnue ? Bim le projet open source du @circl_lu https://t.co/CRp3LGVOS0CIRCL Luxembourg – Computer Incident Response
RT @GossiTheDog: Starting a new thread for two Exchange zero days being exploited in the wild. Calling it ProxyNotShell for details explai…
RT @GossiTheDog: Starting a new thread for two Exchange zero days being exploited in the wild. Calling it ProxyNotShell for
“A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos… https://t.co/wGzJfCDmLh
“A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos… https://t.co/wGzJfCDmLhCIRCL
“libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.” https://t.co/FLWJMQEsyT
“libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.” https://t.co/FLWJMQEsyTCIRCL Luxembourg – Computer Incident Response Center Luxembourg
RT @MISPProject: A new financial taxonomy has been incorporated in MISP taxonomies to better describe financial services and financial orga…
RT @MISPProject: A new financial taxonomy has been incorporated in MISP taxonomies to better describe financial services and financial orga…CIRCL
RT @digihash: @trompi @runasand @virustotal @Mandiant Just share it through the @MISPProject community and it’s available to all. The shari…
RT @digihash: @trompi @runasand @virustotal @Mandiant Just share it through the @MISPProject community and it’s available to all. The shari…CIRCL
RT @FDezeure: The agenda of the EU ATT&CK Workshop on 7 October is online: https://t.co/Zwwohx3FiF. Packed with inspiring lightning talks.…
RT @FDezeure: The agenda of the EU ATT&CK Workshop on 7 October is online: https://t.co/Zwwohx3FiF. Packed with inspiring lightning talks.…CIRCL
RT @cudeso: A @MISPProject tip of the week: The MISP modules can also be used outside MISP. Query the module server for its enabled modules…
RT @cudeso: A @MISPProject tip of the week: The MISP modules can also be used outside MISP. Query the module
We moved and our new office is located 122, rue Adolphe Fischer L-1521 Luxembourg. All the other details remain the… https://t.co/eiQ2gFpGYh
We moved and our new office is located 122, rue Adolphe Fischer L-1521 Luxembourg. All the other details remain the…
RT @MISPProject: MISP 2.4.163 released with improved periodic notification system and many improvements. #threatintel #tip #CTI #opensourc…
RT @MISPProject: MISP 2.4.163 released with improved periodic notification system and many improvements. #threatintel #tip #CTI #opensourc…CIRCL Luxembourg – Computer
RT @secin_lu: ⚠️ Important info: Check out the “Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” rele…
RT @secin_lu: ⚠️ Important info: Check out the “Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” rele…CIRCL Luxembourg
“Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” Fixes are not released unt… https://t.co/pY68pTzyzj
“Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server” Fixes are not released unt… https://t.co/pY68pTzyzjCIRCL Luxembourg – Computer Incident
RT @MISPProject: @avuko @CISAgov @ANSSI_FR @TheHive_Project PAP was an original taxonomy proposed by Bundeswehr following a discussion with…
RT @MISPProject: @avuko @CISAgov @ANSSI_FR @TheHive_Project PAP was an original taxonomy proposed by Bundeswehr following a discussion with…CIRCL Luxembourg –

Számos új fukcióval bővült a MISP
A MISP (Malware Information Sharing Platform) új korrelációs motorral, új munkafolyamatokkal bővült a mostani kiadásában. FORRÁS

Az új közlekedési lámpa protokol (2.0) megjelent
Augusztól alkalmazandó az új Traffic Light Protocol (TLP), melyben FIRST meghatározza/pontosítja a jelölések formai követelményeit és tartalmát. FORRÁS
Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird
CISA All NCAS ProductsRead More
ESB-2022.3163 – [Win][UNIX/Linux] Atlassian products: CVSS (Max): None
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3163 CVE-2022-26135 – Full-Read Server Side Request Forgery
Reducing data exfiltration by malicious insiders
Advice and recommendations for mitigating this type of insider behaviour.NCSC FeedRead More
ESB-2022.3160 – [Debian] firefox-esr: CVSS (Max): 7.5
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3160 firefox-esr security update 30 June 2022 ===========================================================================
ESB-2022.0132.2 – UPDATE [Cisco] Cisco Adaptive Security Device Manager: CVSS (Max): 5.5
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.0132.2 Cisco Adaptive Security Device Manager Information Disclosure
ESB-2022.3162 – [Ubuntu] cloud-init: CVSS (Max): None
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3162 USN-5496-1: cloud-init vulnerability 30 June 2022 ===========================================================================
ESB-2022.3157 – [Debian] maven-shared-utils: CVSS (Max): 9.8
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3157 maven-shared-utils security update 30 June 2022 ===========================================================================
ESB-2022.3161 – [SUSE] Linux Kernel: CVSS (Max): 7.4
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3161 Security update for the Linux Kernel (Live
ESB-2022.3158 – [Debian] firejail: CVSS (Max): 7.8
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3158 firejail security update 30 June 2022 ===========================================================================
ESB-2022.3159 – [Debian] ublock-origin: CVSS (Max): 7.5
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3159 ublock-origin security update 30 June 2022 ===========================================================================
ESB-2022.3075 – [SUSE] mariadb: CVSS (Max): 7.8
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3075 Security update for mariadb 24 June 2022
ESB-2022.3073 – [Appliance] Secheron SEPCOS Control and Protection Relay: CVSS (Max): 9.9
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3073 Advisory (icsa-22-174-03) Secheron SEPCOS Control and Protection
ESB-2022.3078 – [SUSE] salt: CVSS (Max): 7.5
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3078 Security update for salt 24 June 2022
ESB-2022.3076 – [SUSE] php74: CVSS (Max): 7.8
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3076 Security update for php74 24 June 2022
ESB-2022.3079 – [SUSE] xen: CVSS (Max): 8.1
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3079 Security update for xen 24 June 2022
ESB-2022.3077 – [SUSE] salt: CVSS (Max): 7.5
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3077 Security update for salt 24 June 2022
ESB-2022.3081 – [Appliance] OFFIS DCMTK: CVSS (Max): 7.5
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3081 Advisory (icsma-22-174-01) OFFIS DCMTK 24 June 2022
ESB-2022.3074 – [Appliance] Pyramid Solutions EtherNet/IP Adapter Development Kit: CVSS (Max): 9.8
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3074 Advisory (icsa-22-174-04) Pyramid Solutions EtherNet/IP Adapter Development
ESB-2022.3069 – [Win][UNIX/Linux] Jenkins (core) and Jenkins Plugins: CVSS (Max): 8.8
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3069 Jenkins Security Advisory 2022-06-22 24 June 2022
ESB-2022.3071 – [Appliance] Yokogawa STARDOM: CVSS (Max): 6.3
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2022.3071 Advisory (icsa-22-174-01) Yokogawa STARDOM 24 June 2022
CISA Releases Cloud Security Technical Reference Architecture
CISA All NCAS ProductsRead More