Cyber Security News

Bijna helft grote Nederlandse bedrijven heeft zorgen over eigen cybersecurity

Cyber Security News - Wed, 09/12/2018 - 03:36
Bijna de helft van de IT-beslissers van in Nederland gevestigde bedrijven en organisaties met minimaal 250 medewerkers maakt zich zorgen over de cybersecurity van hun werkgever. In een onderzoek van IT-beveiliger ESET uit 45% van de 459 IT-beslissers hun zorgen.
Categories: Cyber Security News

Woman, 44, is juggling affairs with THREE married men

Cyber Security News - Wed, 09/12/2018 - 03:35
'So we embarked on an open relationship just like Joy and her husband do on Wanderlust,' she continued. 'Soon we were meeting so many new people, we decided to go our separate ways because it was more exciting dating casually without the drudgery of a regular relationship.
Categories: Cyber Security News

Carney varnar för Kina

Cyber Security News - Wed, 09/12/2018 - 03:33
Kinas finanssystem är det största hotet för den globala ekonomin. Det framhåller nu Mark Carney, chef för brittiska centralbanken, Bank of England. Varningen kommer i en intervju med BBC i samband med att det är tio år sedan finanskrisen och på frågan vad som skulle kunna utlösa en ny kris?(TT) ....
Categories: Cyber Security News

10 things you need to know in markets today

Cyber Security News - Wed, 09/12/2018 - 03:29
US President Donald Trump gestures after arriving at John Murtha Johnstown-Cambria County Airport in Johnstown after arriving in Pennsylvania to take part in the 17th annual September 11 observance at the Flight 93 National Memorial in Somerset County, Pennsylvania, U.S., September 11, 2018.
Categories: Cyber Security News

Microsoft Windows 7 SP1/Server 2008 SP2/Server 2008 R2 SP1 Kernel Memory information disclosure

Cyber Security News - Wed, 09/12/2018 - 03:25
A vulnerability has been found in Microsoft Windows 7 SP1/Server 2008 SP2/Server 2008 R2 SP1 and classified as problematic. Affected by this vulnerability is an unknown function of the component Kernel . The manipulation with an unknown input leads to a information disclosure vulnerability (Memory).
Categories: Cyber Security News

Microsoft Windows 10 1709/Server 1709 Subsystem for Linux privilege escalation

Cyber Security News - Wed, 09/12/2018 - 03:25
A vulnerability was found in Microsoft Windows 10 1709/Server 1709 and classified as problematic. Affected by this issue is an unknown function of the component Subsystem for Linux . The manipulation with an unknown input leads to a privilege escalation vulnerability. Using CWE to declare the problem leads to CWE-269 .
Categories: Cyber Security News

Microsoft SharePoint Enterprise Server 2010 SP2/2013 SP1/2013 RT SP1/2016 cross site scripting

Cyber Security News - Wed, 09/12/2018 - 03:25
A vulnerability has been found in Microsoft SharePoint Enterprise Server 2010 SP2/2013 SP1/2013 RT SP1/2016 and classified as problematic. This vulnerability affects an unknown function. The manipulation with an unknown input leads to a cross site scripting vulnerability. The CWE definition for the vulnerability is CWE-80 .
Categories: Cyber Security News

Microsoft Windows up to Server 1803 Hyper-V information disclosure

Cyber Security News - Wed, 09/12/2018 - 03:25
A vulnerability was found in Microsoft Windows. It has been classified as problematic. Affected is an unknown function of the component Hyper-V . The manipulation with an unknown input leads to a information disclosure vulnerability. CWE is classifying the issue as CWE-200 . This is going to have an impact on confidentiality.
Categories: Cyber Security News

英國航空遭駭案,駭客可能只用22行程式碼就偷走38萬名乘客個資

Cyber Security News - Wed, 09/12/2018 - 03:25
英國航空被駭一案,研究人員研究其網站,發現Modernizr函式庫被竄改,植入22行惡意程式碼,在使用者於網站上提交付款資訊時,竊取相關資訊及用戶名稱,疑為Magecart駭客集團所為。 ....
Categories: Cyber Security News

Corporate ‘Boot Camps’ and Other Ways to Find and Retain Security Talent

Cyber Security News - Wed, 09/12/2018 - 03:19
Security operations teams are drowning under a sea of alerts that aren’t quieting down anytime soon, and the threat of the growing skills gap has fomented lots of worry about how to fill the talent pipeline. A recent Ponemon study found that 75 percent of organizations report they have an understaffed security team.
Categories: Cyber Security News

An exchange of ideas

Cyber Security News - Wed, 09/12/2018 - 03:14
Promoting dialogue and debate about the strategies, opportunities, responsibilities and challenges in today’s multi-faceted maritime world is the primary aim of the second edition of the Malta Maritime Summit, being held from October 1-5 at the Grand Hotel Excelsior.
Categories: Cyber Security News

Sonderheft c't wissen Desinfec't 2018/19 vorbestellbar

Cyber Security News - Wed, 09/12/2018 - 03:14
Der aktuellen Ausgabe von c't wissen liegt eine neue Version des Sicherheitstools Desinfec't als DVD bei. Damit kann man Trojaner von Windows-PCs löschen. Ab sofort kann man das neue Sonderheft c't wissen Desinfec't 2018/19 über den heise Shop vorbestellen .
Categories: Cyber Security News

Microsoft Patch Tuesday updates for September 2018 also address recently disclosed Windows zero-day

Security Affairs - Wed, 09/12/2018 - 03:08
Microsoft Patch Tuesday updates for September 2018 address over 60 vulnerabilities, including the recently disclosed zero-day flaw.

Microsoft Patch Tuesday updates for September 2018 address 61 vulnerabilities in Internet Explorer (IE), Edge, ChakraCore, Azure, Hyper-V, Windows components, .NET Framework, SQL Server, and Microsoft Office and Office Services. Of the 62 CVEs.

17 flaws are rated as Critical, 43 are rated Important, and just one is rated as Moderate in severity.

The Microsoft Patch Tuesday updates for September 2018 includes the zero-day flaw recently disclosed by a researcher via Twitter.

The vulnerability was publicly disclosed on August 27 by the security expert “@SandboxEscaper,” the researcher also published the exploit code for the vulnerability.

The expert did not report the vulnerability to Microsoft before the public disclosure forcing the tech giant to rapidly prepare a patch.

The issue is a Windows zero-day privilege escalation vulnerability affecting Microsoft’s Windows Task Scheduler that could be exploited by a local attacker or malicious program to obtain system privileges on the vulnerable system.

The vulnerability, tracked as CVE-2018-8440, was exploited shortly after its public disclosure by a threat actor in attacks in the wild.

The threat actor, tracked as PowerPool, leveraged the Windows zero-day exploit in targeted attacks against a small number of users located in the United States, the United Kingdom, Germany, Ukraine, Chile, India, Russia, the Philippines, and Poland.

According to ESET, attackers have modified the publicly available exploit source code and recompiled it.

Microsoft Patch Tuesday updates for September 2018 also addressed three vulnerabilities that were made public before fixes were released, but differently from the CVE-2018-8440 flaw they were not exploited in attacks.

The CVE-2018-8475 Windows Remote Code Execution flaw, rated as critical, exists because the operating system does not properly handle specially crafted image files. An attack could exploit the flaw to execute arbitrary code by tricking victims into downloading a specially crafted image file.

“A remote code execution vulnerability exists when Windows does not properly handle specially crafted image files. An attacker who successfully exploited the vulnerability could execute arbitrary code.” reads the advisory published by Microsoft.

“To exploit the vulnerability, an attacker would have to convince a user to download an image file. The update addresses the vulnerability by properly handling image files.”

The flaw is trivial to exploit, experts warn of possible exploitation in attacks in the next weeks.

“This CVE could allow an attacker to execute code on a target system just by convincing someone to view an image. That’s all the user interaction needed. Open the wrong image – even through a web browser – and code executes, making this a browse-and-own scenario.”  reads a blog post published by Trend Micro’s Zero Day Initiative (ZDI).

“Microsoft provides no information on where this is public, but given the severity of the issue and the relative ease of exploitation, expect this one to find its way into exploit kits quickly,”

Another issue previously disclosed and addressed by Microsoft Patch Tuesday updates for September 2018 is the CVE-2018-8457.

The vulnerability affects Microsoft’s web browsers and could be exploited by an attacker to execute arbitrary code by tricking the victims into visiting a malicious website or opening a specially crafted Office document.

“A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.” reads the advisory published by Microsoft.

“In a web-based attack scenario, an attacker could host a specially crafted website designed to exploit the vulnerability through a Microsoft browser and then convince a user to view the website. An attacker could also embed an ActiveX control marked “safe for initialization” in an application or Microsoft Office document that hosts the browser rendering engine.”

The third publicly disclosed vulnerability is a denial-of-service (DoS) flaw (CVE-2018-8409) rated as an “important” that affects .NET Core, ASP.NET Core and the System.IO.Pipelines component.

“A denial of service vulnerability exists when System.IO.Pipelines improperly handles requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an application that is leveraging System.IO.Pipelines. The vulnerability can be exploited remotely, without authentication.” reads the advisory.

“A remote unauthenticated attacker could exploit this vulnerability by providing specially crafted requests to the application.”

Microsoft also fixed the CVE-2018-0965 and CVE-2018-8439 flaws in the Windows Hyper-V, both could be exploited by an attacker with access to a guest virtual machine to execute code on the underlying operating system.

Adobe also fixed 10 vulnerabilities in Flash Player and ColdFusion, the good news is that none is severe.

window._mNHandle = window._mNHandle || {}; window._mNHandle.queue = window._mNHandle.queue || []; medianet_versionId = "3121199"; try { window._mNHandle.queue.push(function () { window._mNDetails.loadTag("762221962", "300x250", "762221962"); }); } catch (error) {}

Pierluigi Paganini

(Security Affairs – Microsoft Patch Tuesday, CVE-2018-8440)

The post Microsoft Patch Tuesday updates for September 2018 also address recently disclosed Windows zero-day appeared first on Security Affairs.

Categories: Cyber Security News

State of the Union 2018: European Commission proposes measures for securing free and fair European elections

Cyber Security News - Wed, 09/12/2018 - 03:06
. Strasbourg, 12 September 2018. European Commission proposes measures for securing free and fair European elections. On 12 September 2018, on the occasion of his State of the Union Address, President Jean-Claude Juncker said: "We must protect our free and fair elections.
Categories: Cyber Security News

Regulatory policies pose top risk to India Inc in next 3 year: Deloitte

Cyber Security News - Wed, 09/12/2018 - 03:01
The reason being that CXOs are considering regulatory compliance as critical value protector exercise. PTI September 12, 2018, 11:48 IST MUMBAI: Regulatory policies pose the biggest risks for companies over the next three years, followed by and technology disruptions , a survey of over 100 top company executives has revealed.
Categories: Cyber Security News

Путин предложил создать центр цифрового развития на острове Русский

Cyber Security News - Wed, 09/12/2018 - 02:44
12 сентября, PrimaMedia. Президент России Владимир Путин на пленарном заседании "Дальний Восток: расширяя границы возможностей" в рамках Восточного экономического форума выступил с инициативой по созданию центра цифрового развития на острове Русский во Владивостоке, сообщает ИА PrimaMedia со ссылкой на "RT".
Categories: Cyber Security News

US-Präsident: Trump will offenbar ausländische Wahleinmischung bestrafen

Cyber Security News - Wed, 09/12/2018 - 02:41
Am 6. November werden ein Drittel des Senats und das gesamte Repräsentantenhaus neu gewählt. Dann könnte Trump einen bedeutenden Anteil an die oppositionellen Demokraten verlieren. Bild: Washington Reuters Ausländische Einmischung in US-Wahlen soll nach Plänen von Präsident Donald Trump künftig mit Sanktionen bestraft werden.
Categories: Cyber Security News

Сбербанк презентовал новые решения для бизнеса и инновационные разработки

Cyber Security News - Wed, 09/12/2018 - 02:30
Сбербанк представил новые продукты и решения для бизнеса, а также последние разработки в сфере инновационных технологий на площадке IV Восточного экономического форума. Банк презентовал новый онлайн-курс от компании Деловая среда - 120 секунд, первый в России продукт для предпринимателей, который....
Categories: Cyber Security News

It took hackers just 22 lines of code to steal British Airways’ customer data

Cyber Security News - Wed, 09/12/2018 - 02:29
Last week, British Airways acknowledged that its website had been hacked – leading to 380,000 customers ‘ data being compromised. It seems like it wasn’t too difficult either: Cybersecurity firm has found out that it took hackers just 22 lines of code to get a hold of the data.
Categories: Cyber Security News

CSA Hosts 13th Iteration of ASEAN CERT Incident Drill (ACID)

Cyber Security News - Wed, 09/12/2018 - 02:28
12 Sep 2018. The Cyber Security Agency of Singapore (CSA) hosted the 13 th iteration of the ASEAN CERT (Computer Emergency Response Team) Incident Drill (ACID) on 5th September 2018. ACID is an annual drill that Singapore has been hosting since 2006, to strengthen cybersecurity preparedness and....
Categories: Cyber Security News

Pages