Category: CyberSec / ITSec / Sicherheit / Security / SPAM

2020-05-18 Russian IT Security Updates
18.05.2020

SecurityLab, [21.04.20 15:35] Bitdefender experts have reported a malicious campaign against oil and gas companies. Attackers use targeted phishing and send emails to victims on behalf of logistics companies and engineering contractors. The goal of the campaign is to infect […]

please update your Firefoxes and Chromiums
09.04.2020

Debian Security Advisory DSA-4655-1 firefox-esr — security update Date Reported: 08 Apr 2020 Affected Packages: firefox-esr Vulnerable: Yes Security database references: In Mitre’s CVE dictionary: CVE-2020-6821, CVE-2020-6822, CVE-2020-6825. More information: Multiple security issues have been found in the Mozilla Firefox […]

Post-Quantum Cryptography
03.04.2020

Videos: ssh thanks for sharing even when the audio is pretty crappy. slides (hard to read on video) can be found here: https://degabriele.info/slides/SSH_CCS_16.pdf “dropbear” is ambedded ssh server Made in Australia (wiki) also available as Android App naming: a “dropbear” […]

2020-04-01 Russian IT Security Updates
02.04.2020

SecurityLab, [26.03.20 08:10] The largest free hosting provider on the darknet, Daniel’s Hosting, was hacked for the second time in 16 months, and stopped working on Wednesday, March 25. Unknown attackers deleted the entire database of the hosting provider, as […]

2020-03-25 Russian Security Updates
25.03.2020

SecurityLab, [24.03.20 08: 05] Cybercriminals hack Windows PCs through a previously unknown vulnerability in the Adobe Type Manager library (atmfd.dll) used by the operating system to process PostScript type 1 fonts. Microsoft described attacks exploiting this vulnerability as “targeted” and […]

Top 10 Virus Trojans Malware of 2019
21.03.2020

No. 1 Emotet — 36 026 samples Trojan was first discovered 2014 and was used to intercept data transferred via a secure connection. We will remind, in September of this year Emotet came back to life after 4 months of […]

2020-03 Russian Security Updates
21.03.2020

SecurityLab, [24.12.19 10: 05] An attempt by Chinese farmers to fight drones infecting pigs with African plague has disabled the navigation systems of some aircraft. According to the South China Morning Post, an unauthorized GPS signal jamming device was installed […]

why internet explorer is a severe security problem
12.02.2020

“As explained previously, this flaw could allow a remote attacker to execute arbitrary code on targeted computers and take full control over them just by convincing victims into opening a maliciously crafted web page on the vulnerable Microsoft browser.” https://thehackernews.com/2020/02/microsoft-windows-updates.html

Russian IT Security Updates 2020-01
13.01.2020

now WITH SPICY COMMENTS X-D SecurityLab, [22.12.19 12:40] A Twitter user using the alias 08Tc3wBB created tfp0-an exploit that allows you to jailbreak the latest iPhone models with IOS 13.3. The functionality of the exploit has already been confirmed by […]

Russian IT Security Updates Dec22
23.12.2019

SecurityLab, [25.11.19 15:44] The Creator of the world wide web Tim Berners-Lee (Tim Berners-Lee) presented an action plan to protect the network from political manipulation, fake news, privacy violations and other harmful influences. Tim Berners-Lee: “control of information is hugely […]

Mail Thunderbird – disable JavaScript
17.12.2019

MOZILLA ONE URGES YOU! MAKE JAVASCRIPT DISABLED IN THUNDERBIRD THE DEFAULT! Description Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory corruption and a potentially exploitable crash. This […]

Russian IT Security Updates Dec3
03.12.2019

SecurityLab, [22.11.19 08:23] French company Edenred reported a cyberattack using malware that affected an unknown number of computer systems. The company has launched an investigation to determine the extent of the contamination. Payment solution provider Edenred has been the victim […]

Russian IT Security Updates Nov2
21.11.2019

new Russian IT Security updates: thanks to https://www.securitylab.ru/ and https://translate.yandex.com/   SecurityLab, [06.11.19 16:12] The Libarchive compression library, which is included by default in Debian, Ubuntu, Gentoo, Arch Linux, FreeBSD, and NetBSD distributions, contains a vulnerability that allows an attacker […]

07.11.2019

SecurityLab, [01.11.19 15:21] Google has released fixes for two vulnerabilities in Chrome, including a zero-day vulnerability exploited in real-world attacks. The issues are fixed in browser version 78.0.3904.87 for Windows, Mac and Linux, and users are strongly advised to install […]

another reason NOT to use wireless keyboards
27.10.2019

“In the popular series of wireless keyboards Fujitsu LX390 found two dangerous vulnerabilities. According to researchers from the company SySS, exploitation of vulnerabilities allows nearby attackers to “spy” passwords entered on the keyboard, or even to seize control of the […]

19.09.2019

for whatever reason, it is not enough to allow udp traffic on port 5900, one also needs to allow tcp traffic. /sbin/iptables -A INPUT -p tcp -m tcp –dport 5900 -j ACCEPT /sbin/iptables -A INPUT -p udp -m udp –dport […]