News

  • Top 10 Malware October 2022 Wed, 07 Dec 2022 08:26:00 -0500
    In its Top 10 Malware list for October 2022, the MS-ISAC observed the return of Gh0st and Snugy and the debut of SessionManager2.
Looking Glass Cyber
    Malware Patrol SecList
    • How to train your Ghidra
      Brief introduction to setting up Ghidra, and then configuring it with a familiar UI and shortcuts, so that you would not need to re-learn all the key sequences you have got used to over the years.
    securingtomorrow.mcafee.com Quick Heal Threat Post Naked Security Security Affairs

    Security Awareness Tips of the week

      Exploits

      Last 20 Website Defacements - Zone-h

      Advisories

      Symantec Packet Stoem Security

      • Ubuntu Security Notice USN-5768-1 Thu, 08 Dec 2022 16:36:17 GMT
        Ubuntu Security Notice 5768-1 - Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could possibly use this issue to cause the GNU C Library to hang or crash, resulting in a denial of service. It was discovered that the GNU C Library did not properly handled DNS responses when ENDS0 is enabled. An attacker could possibly use this issue to cause fragmentation-based attacks.
      • Red Hat Security Advisory 2022-8781-01 Thu, 08 Dec 2022 16:34:22 GMT
        Red Hat Security Advisory 2022-8781-01 - Logging Subsystem for Red Hat OpenShift has a security update. Issues addressed include a denial of service vulnerability.
      • Red Hat Security Advisory 2022-8849-01 Thu, 08 Dec 2022 16:33:08 GMT
        Red Hat Security Advisory 2022-8849-01 - An update for python-XStatic-Angular is now available for Red Hat OpenStack Platform 16.2.4 (Train).
      • Red Hat Security Advisory 2022-8852-01 Thu, 08 Dec 2022 16:32:57 GMT
        Red Hat Security Advisory 2022-8852-01 - A fast multidimensional array facility for Python. Issues addressed include a null pointer vulnerability.
      • Red Hat Security Advisory 2022-8874-01 Thu, 08 Dec 2022 16:31:28 GMT
        Red Hat Security Advisory 2022-8874-01 - An update for openstack-barbican is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8857-01 Thu, 08 Dec 2022 16:31:01 GMT
        Red Hat Security Advisory 2022-8857-01 - Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Issues addressed include a bypass vulnerability.
      • Red Hat Security Advisory 2022-8873-01 Thu, 08 Dec 2022 16:29:56 GMT
        Red Hat Security Advisory 2022-8873-01 - An update for python-oslo-utils is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8866-01 Thu, 08 Dec 2022 16:29:06 GMT
        Red Hat Security Advisory 2022-8866-01 - An update for python-XStatic-Angular is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8848-01 Thu, 08 Dec 2022 16:28:14 GMT
        Red Hat Security Advisory 2022-8848-01 - An update for python-XStatic-Bootstrap-SCSS is now available for Red Hat OpenStack Platform 16.2.4 (Train). Issues addressed include a cross site scripting vulnerability.
      • Red Hat Security Advisory 2022-8865-01 Thu, 08 Dec 2022 16:27:25 GMT
        Red Hat Security Advisory 2022-8865-01 - An update for python-XStatic-Bootstrap-SCSS is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2. Issues addressed include a cross site scripting vulnerability.
      • Red Hat Security Advisory 2022-8864-01 Thu, 08 Dec 2022 16:27:11 GMT
        Red Hat Security Advisory 2022-8864-01 - UltraJSON is an ultra fast JSON encoder and decoder. Issues addressed include a double free vulnerability.
      • Red Hat Security Advisory 2022-8851-01 Thu, 08 Dec 2022 16:26:28 GMT
        Red Hat Security Advisory 2022-8851-01 - An update for rabbitmq-server is now available for Red Hat OpenStack Platform 16.2.4 (Train) for Red Hat Enterprise Linux (RHEL) 8.4. Issues addressed include cross site scripting and improper neutralization vulnerabilities.
      • Red Hat Security Advisory 2022-8862-01 Thu, 08 Dec 2022 16:25:43 GMT
        Red Hat Security Advisory 2022-8862-01 - An update for puppet is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8853-01 Thu, 08 Dec 2022 16:24:45 GMT
        Red Hat Security Advisory 2022-8853-01 - An update for python-django20 is now available for Red Hat OpenStack Platform 16.2.4 (Train) for Red Hat Enterprise Linux (RHEL) 8.4. Issues addressed include cross site scripting and denial of service vulnerabilities.
      • Red Hat Security Advisory 2022-8867-01 Thu, 08 Dec 2022 16:23:18 GMT
        Red Hat Security Advisory 2022-8867-01 - An update for rabbitmq-server is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2. Issues addressed include cross site scripting and improper neutralization vulnerabilities.
      • Red Hat Security Advisory 2022-8847-01 Thu, 08 Dec 2022 16:22:30 GMT
        Red Hat Security Advisory 2022-8847-01 - An update for protobuf is now available for Red Hat OpenStack Platform 16.2.4 (Train).
      • Red Hat Security Advisory 2022-8856-01 Thu, 08 Dec 2022 16:20:32 GMT
        Red Hat Security Advisory 2022-8856-01 - An update for python-django-horizon is now available for Red Hat OpenStack Platform 16.2.4 (Train) on Red Hat Enterprise Linux (RHEL) 8.4.
      • Red Hat Security Advisory 2022-8854-01 Thu, 08 Dec 2022 16:19:39 GMT
        Red Hat Security Advisory 2022-8854-01 - An update for python-scciclient is now available for Red Hat OpenStack Platform 16.2.4 (Train) director for Red Hat Enterprise Linux (RHEL) 8.4.
      • Red Hat Security Advisory 2022-8872-01 Thu, 08 Dec 2022 16:18:51 GMT
        Red Hat Security Advisory 2022-8872-01 - An update for python-django20 is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2. Issues addressed include cross site scripting, denial of service, remote shell upload, and remote SQL injection vulnerabilities.
      • Red Hat Security Advisory 2022-8863-01 Thu, 08 Dec 2022 16:18:42 GMT
        Red Hat Security Advisory 2022-8863-01 - Paramiko is a module for python 2.3 or greater that implements the SSH2 protocol for secure connections to remote machines. Unlike SSL, the SSH2 protocol does not require heirarchical certificates signed by a powerful central authority. You may know SSH2 as the protocol that replaced telnet and rsh for secure access to remote shells, but the protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.
      • Red Hat Security Advisory 2022-8861-01 Thu, 08 Dec 2022 16:18:33 GMT
        Red Hat Security Advisory 2022-8861-01 - A fast multidimensional array facility for Python. Issues addressed include a null pointer vulnerability.
      • Red Hat Security Advisory 2022-8868-01 Thu, 08 Dec 2022 16:16:22 GMT
        Red Hat Security Advisory 2022-8868-01 - An update for python-scciclient is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8870-01 Thu, 08 Dec 2022 16:15:22 GMT
        Red Hat Security Advisory 2022-8870-01 - An update for openstack-neutron is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8869-01 Thu, 08 Dec 2022 15:24:41 GMT
        Red Hat Security Advisory 2022-8869-01 - An update for puppet-firewall is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2.
      • Red Hat Security Advisory 2022-8855-01 Thu, 08 Dec 2022 15:24:33 GMT
        Red Hat Security Advisory 2022-8855-01 - OpenStack Networking is a virtual network service for OpenStack. Just as OpenStack Compute provides an API to dynamically request and configure virtual servers, OpenStack Networking provides an API to dynamically request and configure virtual networks. These networks connect 'interfaces' from other OpenStack services. The OpenStack Networking API supports extensions to provide advanced network capabilities.