Enhancing Cyber Resilience: Insights from CISA Red...

Jan 8, 2025 | National Cyber Awareness

IoT’s Regulatory Reckoning Is Overdue

Jan 6, 2025 | DARKREADING

How to Protect Your Environment From the NTLM Vuln...

Dec 21, 2024 | DARKREADING

Disinformation, Fortify 24x7 Team, News

Fortify 24×7 Named to MSSP Alert’s 2024 ...

Dec 25, 2024

Why do experts trust US elections?

Aug 14, 2024

Why do election results take so long to ...

Aug 14, 2024

Cybersecurity News & Resources You Need To Assess Current Threats

The Beers & Bytes Podcast

When you're thirsty for cheesy entertainment AND information security, grab a beer and the latest episode of Beers & Bytes.

Sorry, no posts found.

All

Schneider Electric Trio Q Licensed Data Radio

by Cyberthreat Blog | Apr 19, 2025 | CISA Advisories | 0 |

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.4 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: Trio Q Licensed Data Radio Vulnerabilities: Insecure Storage of Sensitive Information, Initialization of a...

VU#726882: Paragon Partition Manager contains five memory vulnerabilities within its BioNTdrv.sys driver that allow for privilege escalation and denial-of-service (DoS) attacks

by Cyberthreat Blog | Mar 16, 2025 | CERT-Vulnerabilities | 0 |
Off-by-slash vulnerability in Nginx config

by Cyberthreat Blog | Feb 25, 2025 | Fortinet PSIRT Advisories | 0 |
Probably Don’t Rely on EPSS Yet

by Cyberthreat Blog | Jan 22, 2025 | CERT Insider Threats | 0 |

CVE Notifications

CVE-2020-9395

by Cyberthreat Blog | Jul 6, 2020 | CVE Notifications | 0 |

An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2’s 4-way-handshake via a malformed...

CVE-2020-4211

by Cyberthreat Blog | Feb 24, 2020 | CVE Notifications | 0 |
CVE-2019-4595

by Cyberthreat Blog | Feb 24, 2020 | CVE Notifications | 0 |
CVE-2020-4213

by Cyberthreat Blog | Feb 24, 2020 | CVE Notifications | 0 |

CERT Insider Threats

UEFI – Terra Firma for Attackers

by Cyberthreat Blog | Jan 5, 2025 | CERT Insider Threats | 0 |

This blog post focuses on how the vulnerabilities in firmware popularized by the Uniform Extensible Firmware Interface create a lucrative target for high-profile attackers.

Vultron: A Protocol for Coordinated Vulnerability Disclosure

by Cyberthreat Blog | Dec 21, 2024 | CERT Insider Threats | 0 |
UEFI: 5 Recommendations for Securing and Restoring Trust

by Cyberthreat Blog | Oct 30, 2024 | CERT Insider Threats | 0 |
The Threat of Deprecated BGP Attributes

by Cyberthreat Blog | Oct 15, 2024 | CERT Insider Threats | 0 |

Ashley Madison To Pay Millions In Breach Settlement

by Fortify Security Team | Dec 18, 2016 | Breach | 0 |

Ashley Madison and New York Attorney General Schneiderman Announces $17.5 Million Settlement In Joint Multi-State And FTC Agreement. The settlement follows investigation finding that the adult dating website had lax security...

Millions of University Emails for Sale on Dark Web

by Cyberthreat Blog | Apr 4, 2017 | Breach, Security | 0 |

Researchers have found millions of US University emails (and passwords) for sale on the Dark Web. The stolen email addresses/password combinations are selling for $3.50 – $10 each. This is only a fraction of a lucrative...

Disinformation

Is hate speech covered by the First Amendment?

by Nate | Sep 25, 2020 | Disinformation | 0 |

SHARE AND INFORM OTHERS:.fusion-body .fusion-builder-column-0{width:100% !important;margin-top : 0px;margin-bottom : 20px;}.fusion-builder-column-0 > .fusion-column-wrapper {padding-top : 0px !important;padding-right : 0px...

Is the stock market a good measure of the economy?

by Nate | Sep 25, 2020 | Disinformation | 0 |
Is Russia actively interfering in the 2020 election?

by Nate | Sep 25, 2020 | Disinformation | 0 |
Is climate change really responsible for the fires?

by Nate | Sep 25, 2020 | Disinformation | 0 |

CERT-Vulnerabilities, National Cyber Awareness

VU#952657: Rsync contains six vulnerabilities

by Cyberthreat Blog | Jan 16, 2025 | CERT-Vulnerabilities | 0 |

Overview Rsync, a versatile file-synchronizing tool, contains six vulnerabilities present within versions 3.3.0 and below. Rsync can be used to sync files between remote and local computers, as well as storage devices. The...

VU#164934: PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement

by Cyberthreat Blog | Dec 30, 2024 | CERT-Vulnerabilities | 0 |
2023 Top Routinely Exploited Vulnerabilities

by Cyberthreat Blog | Dec 22, 2024 | National Cyber Awareness | 0 |
VU#123336: Vulnerable WiFi Alliance example code found in Arcadyan FMIMG51AX000J

by Cyberthreat Blog | Nov 3, 2024 | CERT-Vulnerabilities | 0 |

SANS ISC Bulletins

Zero Trust and Entra ID Conditional Access, (Sun, Jan 19th)

by Cyberthreat Blog | Jan 19, 2025 | SANS ISC Bulletins | 0 |

Microsoft Entra ID (Formerly Azure AD) Conditional Access (CA) policies are the key components to a Zero Trust strategy, as it provides the ability to function as the front door for users and devices. CA policies use attributes,...

More SSH Fun!, (Tue, Dec 24th)

by Cyberthreat Blog | Jan 2, 2025 | SANS ISC Bulletins | 0 |
Compiling Decompyle++ For Windows, (Wed, Dec 25th)

by Cyberthreat Blog | Jan 2, 2025 | SANS ISC Bulletins | 0 |
Capturing Honeypot Data Beyond the Logs, (Thu, Dec 26th)

by Cyberthreat Blog | Jan 2, 2025 | SANS ISC Bulletins | 0 |

The Ransomware Epidemic in Healthcare

by Fortify Security Team | Dec 13, 2016 | Healthcare, Security | 0 |

Ransomware attacks have plagued business of all sizes, healthcare institutions and even government entities during the first half of 2016, forcing CEO’s and CIO’s into damage control mode as IT teams scramble to beef...

Kicking-Off with a December 4th Workshop, NIST is Revisiting and Revising Foundational Cybersecurity Activities for IoT Device Manufacturers, NIST IR 8259!

Jan 21, 2025 | NIST

In May 2020, NIST published Foundational Cybersecurity Activities for IoT Device Manufacturers (NIST IR 8259), which describes recommended cybersecurity activities that manufacturers should consider performing before their IoT...

Baxter Life2000 Ventilation System

Jan 18, 2025 | CISA ICS Medical Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Baxter Equipment: Life2000 Ventilation System Vulnerabilities: Cleartext Transmission of Sensitive Information, Improper...

How to Bring Zero Trust to Wi-Fi Security with a Cloud-based Captive Portal?

Jan 17, 2025 | The Hacker News

Recent data breaches have highlighted the critical need to improve guest Wi-Fi infrastructure security in modern business environments. Organizations face increasing pressure to protect their networks while providing convenient...

Arbitrary file write on GUI

Jan 15, 2025 | Fortinet PSIRT Advisories

A relative path traversal vulnerability [CWE-23] in FortiManager & FortiAnalyzer may allow a privileged attacker with super-admin profile and CLI access to write files on the underlying system via crafted HTTP or HTTPS...

Fortify Partners with SeedPod to offer Robust Cyber Insurance

Jan 11, 2025 | Fortify 24x7 Team

SeedPod Cyber, the intelligent cyber insurance company tailored for Managed Service Providers (MSPs) and Managed Fortify24x7...

Schneider Electric PowerChute Serial Shutdown

Jan 10, 2025 | CISA Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: PowerChute Serial Shutdown Vulnerability: Improper Authentication 2. RISK EVALUATION...

2054 Mass Metrology Seminar

Jan 9, 2025 | NIST

Course Description The Mass Metrology Seminar is a two-week, “hands-on” seminar. It incorporates approximately 30 percent lectures and 70 percent demonstrations and laboratory work in which the participant performs...

ABB ASPECT-Enterprise, NEXUS, and MATRIX Series Products

Jan 7, 2025 | CISA ICS Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: ABB Equipment: ASPECT-Enterprise, NEXUS, and MATRIX series Vulnerabilities: Files or Directories Accessible to External...

Data Pipeline Challenges of Privacy-Preserving Federated Learning

Jan 4, 2025 | NIST

This post is part of a series on privacy-preserving federated learning. The series is a collaboration between NIST and the UK government’s Responsible Technology Adoption Unit (RTA), previously known as the Centre for Data...

BD Diagnostic Solutions Products

Jan 1, 2025 | CISA ICS Medical Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION: Low attack complexity Vendor: Becton, Dickinson and Company (BD) Equipment: Diagnostic Solutions Products Vulnerability: Use of Default Credentials 2. RISK EVALUATION...

New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy

Dec 31, 2024 | The Hacker News

The U.S. Department of Justice (DoJ) has issued a final rule carrying out Executive Order (EO) 14117, which prevents mass transfer of citizens’ personal data to countries of concern such as China (including Hong Kong and...

[FortiWLM] Unauthenticated limited file read vulnerability

Dec 28, 2024 | Fortinet PSIRT Advisories

A relative path traversal [CWE-23] in FortiWLM may allow a remote unauthenticated attacker to read sensitive files. Revised on 2024-12-18 00:00:00

CISA Adds One Known Exploited Vulnerability to Catalog

Dec 24, 2024 | CISA Advisories

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-44207 Acclaim Systems USAHERDS Use of Hard-Coded Credentials Vulnerability These types of...

11th Annual NICE K12 Cybersecurity Education Conference

Dec 23, 2024 | NIST

The next NICE K12 Cybersecurity Education Conference will take place December 8-9, 2025 in Nashville, Tennessee. This event is supported by NICE, a program of the National Institute of Standards and Technology in the U.S....

Hitachi Energy SDM600

Dec 22, 2024 | CISA ICS Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION: Exploitable from adjacent network Vendor: Hitachi Energy Equipment: SDM600 Vulnerabilities: Origin Validation Error, Incorrect Authorization 2. RISK EVALUATION Successful...

NIST’s International Cybersecurity and Privacy Engagement Update – New Translations

Dec 21, 2024 | NIST

As the year comes to a close, NIST continues to engage with our international partners to strengthen cybersecurity, including sharing over ten new international translations in over six languages as resources for our...

Christmas “Gift” Delivered Through SSH, (Fri, Dec 20th)

Dec 20, 2024 | SANS ISC Bulletins

Christmas is at our doors and Attackers use the holiday season to deliver always more and more gifts into our mailboxes! I found this interesting file this morning: “christmas_slab.pdf.lnk”[1]. Link files (.lnk) are...

Ossur Mobile Logic Application

Dec 19, 2024 | CISA ICS Medical Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.6 ATTENTION: Low attack complexity Vendor: Ossur Equipment: Mobile Logic Application Vulnerabilities: Exposure of Sensitive System Information to an Unauthorized Control Sphere, Command...

HubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential Theft

Dec 18, 2024 | The Hacker News

Cybersecurity researchers have disclosed a new phishing campaign that has targeted European companies with an aim to harvest account credentials and take control of the victims’ Microsoft Azure cloud infrastructure. The...

Missing authentication in fgfmsd

Nov 2, 2024 | Fortinet PSIRT Advisories

A missing authentication for critical function vulnerability [CWE-306] in FortiManager fgfmd daemon may allow a remote unauthenticated attacker to execute arbitrary code or commands via specially crafted requests.Reports have...

Cybersecurity Job Market Stagnates, Dissatisfaction Abounds

Oct 31, 2024 | DARKREADING

The 2024 ISC2 Cybersecurity Workforce Study found that amid a tightening job market and dynamic...

Staff Stories Spotlight Series: Cybersecurity Awareness Month 2024

Oct 29, 2024 | NIST

This blog is part of a larger NIST series during the month of October for Cybersecurity Awareness Month , called ‘Staff Stories Spotlight.’ Throughout the month of October this year, Q&A style blogs will be...

Episode 31 – Revolutionizing MLOps with Game-Changing Solutions for AI Integration

Oct 28, 2024 | Media

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Oct 25, 2024 | CISA Advisories

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-20481 Cisco ASA and FTD Denial-of-Service Vulnerability CVE-2024-37383 RoundCube Webmail...

Development Features Enabled in Prodcution, (Thu, Oct 24th)

Oct 24, 2024 | SANS ISC Bulletins

We do keep seeing attackers “poking around” looking for enabled development features. Developers often use these features and plugins to aid in debugging web applications. But if left behind, they may provide an...

BD Alaris Infusion Central (Update A)

Oct 23, 2024 | CISA ICS Medical Advisories

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low attack complexity Vendor: Becton, Dickinson and Company (BD) Equipment: Alaris Infusion Central ——— Begin Update A part 1 of 2 ———...

International Face and Fingerprint Performance Conference (IFPC) 2025

Oct 22, 2024 | NIST

NIST is pleased to announce the IFPC 2025, which is focused on all technical factors affecting the deployment and use of high performance face recognition applications, including applications, standards, risk management, quality...

Chinese Nation-State Hackers APT41 Hit Gambling Sector for Financial Gain

Oct 21, 2024 | The Hacker News

The prolific Chinese nation-state actor known as APT41 (aka Brass Typhoon, Earth Baku, Wicked Panda, or Winnti) has been attributed to a sophisticated cyber attack targeting the gambling and gaming industry. “Over a period...

Kieback&Peter DDC4000 Series

Oct 20, 2024 | CISA ICS Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Kieback&Peter Equipment: DDC4000 Series Vulnerabilities: Path Traversal, Insufficiently Protected Credentials, Use of...

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations

Oct 18, 2024 | National Cyber Awareness

Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal...

Priviledged admin able to view device summary for device in different ADOM

Oct 17, 2024 | Fortinet PSIRT Advisories

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiManager Administrative Domain (ADOM) may allow a remote authenticated attacker assigned to an ADOM to access device summary of other...

North Korea Hackers Get Cash Fast in Linux Cyber Heists

Oct 16, 2024 | DARKREADING

The thieves modify transaction messages to initiate unauthorized withdrawals, even when there are...

Staff Stories Spotlight Series: Cybersecurity Awareness Month 2024

Oct 14, 2024 | NIST

CISA Releases Three Industrial Control Systems Advisories

Oct 5, 2024 | CISA Advisories

CISA released three Industrial Control Systems (ICS) advisories on October 3, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-277-01 TEM...

Survey of CUPS exploit attempts, (Fri, Oct 4th)

Oct 4, 2024 | SANS ISC Bulletins

It is about a week since the release of the four CUPS remote code execution vulnerabilities. After the vulnerabilities became known, I configured one of our honeypots that watches a larger set of IPs to specifically collect UDP...

Baxter Connex Health Portal

Oct 3, 2024 | CISA ICS Medical Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v3.1 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Baxter Equipment: Connex Health Portal Vulnerabilities: SQL Injection, Improper Access Control 2. RISK EVALUATION...

AI-Powered Rhadamanthys Stealer Targets Crypto Wallets with Image Recognition

Oct 1, 2024 | The Hacker News

The threat actors behind the Rhadamanthys information stealer have added new advanced features to the malware, including using artificial intelligence (AI) for optical character recognition (OCR) as part of what’s called...

5×5: The Public Safety Innovation Summit

Sep 30, 2024 | NIST

SAVE THE DATE 5×5 ― the confirmation of a strong and clear signal ― and the place to make your voice heard and drive public safety communications forward. In 2025, the FirstNet Authority and the National Institute of...

78 Combined Regional Measurement Assurance Program (C-RMAP)

Sep 29, 2024 | NIST

NIST Handbook 143, Section 5.2, Table 2 notes that annual attendance at the RMAP training session is required for ongoing laboratory Recognition of State weights and measures metrology staff. Handbook 143, Program Handbook...

Atelmo Atemio AM 520 HD Full HD Satellite Receiver

Sep 28, 2024 | CISA ICS Advisories

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Atelmo Equipment: Atemio AM 520 HD Full HD Satellite Receiver Vulnerability: OS Command...

VU#138043: A stack-based overflow vulnerability exists in the Microchip Advanced Software Framework (ASF) implementation of the tinydhcp server

Sep 27, 2024 | CERT-Vulnerabilities

Overview A stack-based overflow vulnerability exists in the tinydhcp server in the Microchip Advanced Software Framework (ASF) that can lead to remote code execution. Description An implementation of DHCP in ASF fails input...