LINK OMIGOD (CVE-2021-38647) is a vulnerability in the Azure deployed virtual machines running Linux. Make sure to update if you have Azure Linux machines. Many of the scans are coming on ports 5986 and 1270
LINK To make it easy, I pulled it and created a simple txt list you can use. These are the some of the initial access methods. Pulse Secure VPNCVE-2021-22893CVE-2020-8260CVE-2020-8243CVE-2019-11539CVE-2019-11510 CitrixCVE-2020-8196CVE-2020-8195CVE-2019-19781CVE-2019-11634 Microsoft ExchangeCVE-2021-34523CVE-2021-34473CVE-2021-31207CVE-2021-26855 FortinetCVE-2020-12812CVE-2019-5591CVE-2018-13379 SonicWallCVE-2021-20016CVE-2020-5135CVE-2019-7481 F5CVE-2021-22986CVE-2020-5902 Palo AltoCVE-2020-2021CVE-2019-1579 QNAPCVE-2021-28799CVE-2020-36198 SophosCVE-2020-12271 SharePointCVE-2019-0604 Microsoft WindowsCVE-2019-0708CVE-2020-1472CVE-2021-31166CVE-2021-36942 Microsoft OfficeCVE-2017-0199CVE-2017-11882CVE-2021-40444 vCenterCVE-2021-21985 AccellionCVE-2021-27101CVE-2021-27104CVE-2021-27102CVE-2021-27103 FileZenCVE-2021-20655 AtlassianCVE-2021-26084 Zoho CorpCVE-2021-40539 Microsoft AzureCVE-2021-38647
Apple has released 14.8, time to upgrade.
LINK Not a vulnerability, but a news item. OpenSSL 3.0 has finally been released after 7-8 years of development. Its the successor to OpenSSL 1.1.1. Time to start investigating its usage.
LINK This is simply a very interesting endeavor and would like to see how it evolves.
Over the many years I have been in IT and Security, one item repeatedly comes up. How can a Security Organization effect change when the operations and “regular people” are unwilling to make changes? It is a maddening problem. You know these issues need to be resolved, but the “regular people”, the owners, the customers […]
LINK CISA put together a bunch of information about Cobalt Strike for you. Suggest taking a look.
LINK This is a good document. Not all may apply to you but most will. Alot of the data here provides a good list of items that can help pressure business owners and other service owners to make appropriate changes to avoid catastrophic infections by ransomware.
LINK This is honestly terrifying. Now, the fact it was a Tesla honesly means nothing to me. The usage of a Drone to hover near a car or cars and starting to actively hack them is something needing to be payed attention to. Car security has been a joke for so long, I hope it […]