This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). VMware on Thursday informed customers that it has released patches for a critical remote code execution vulnerability in ESXi that was disclosed recently at the Tianfu Cup hacking competition in China. According to organizers […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Cybersecurity teams face a lot of conflicting objectives—both within their teams and from upper management. But a May 2019 commissioned study conducted by Forrester Consulting on behalf of McAfee really puts a fine point […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Today I want to take a look at data leaks and breaches as the last week has had quite a few of those. Unicef Norway had a database exposed to the internet (Paywall) without […]
In this monthly post, we try to make you aware of five different security-related products. This is a repost from my personal website Ulyaoth This month we have chosen for the following: * Kismet * MAGNET RAM Capture * RedLock * SQLMap * Wazuh Kismet Information from the block-doh website: Kismet is a wireless network […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). A new JavaScript skimmer targets data entered into the payment forms of ecommerce merchant websites, Visa Payment Fraud Disruption (PFD) warns. Visa notes in a security alert (PDF). “In September 2019, Visa Payment Fraud […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). This week we have seen multiple cases of one of the harder issues in security, the insider threat. Two former employees of twitter have been charged with spying on Twitter users for Saudi Arabia, […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). It was October 1999. Macs had just got embedded Wi-Fi, Napster had launched, and Yahoo had purchased Geocities for $3.6bn. Something else happened that escaped most computer users at the time: CVE posted its […]
In this monthly post, we try to make you aware of five different security-related products. This is a repost from my personal website Ulyaoth This month we have chosen for the following: * block-doh * DisableWinTracking * P0f * GitGuardian * Sandboxie block-doh Information from the block-doh website: DoH provides “privacy” at the expense of […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Pen Test Partners has a great blog-post about one of their recent adventures. This is a little bit out of the normal scenario for many, but this is regarding a finding they did on […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). “If you wanted to secure the phone numbers you’d just put them in a database table called ‘2FA numbers don’t sell to marketers,’” says Matthew Green, a cryptographer at Johns Hopkins University. “This stuff […]