SysAdmin 24x7
前往频道在 Telegram
Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat
显示更多4 387
订阅者
+124 小时
-47 天
无数据30 天
帖子存档
4 387
Injecting Code into Windows Protected Processes using COM - Part 1
https://googleprojectzero.blogspot.com/2018/10/injecting-code-into-windows-protected.html
4 387
#Wireshark 2.6.5 has been released. Enjoy.
https://www.wireshark.org/docs/relnotes/wireshark-2.6.5.html
4 387
Thousands of Printers Hacked Worldwide & Hackers Promote PewDiePie YouTube Channel To Subscribe
[...]
Also, he said to The Verge,“ People underestimate how easy a malicious hacker could have used a vulnerability like this to cause major havoc,” “Hackers could have stolen files, installed malware, caused physical damage to the printers and even use the printer as a foothold into the inner network.
[...]
https://gbhackers.com/hackers-promote-pewdiepie/
4 387
Inyección de comandos en el lanzador de Epic Games
https://unaaldia.hispasec.com/2018/11/inyeccion-de-comandos-en-el-lanzador-de-epic-games.html
4 387
Analizar entornos de servicios web de Amazon (AWS) de forma grafica.
https://www.gurudelainformatica.es/2018/11/analizar-entornos-de-servicios-web-de.html
4 387
Ubuntu: incomplete fix for CVE-2018-16510
https://bugs.chromium.org/p/project-zero/issues/detail?id=1675
4 387
Denegación de servicio en el kernel de Linux
https://unaaldia.hispasec.com/2018/11/denegacion-de-servicio-en-el-kernel-de-linux.html
4 387
Vulnerabilidad SQL Injection en Cisco Prime License Manager
Fecha de publicación: 29/11/2018
Importancia: 5 - Crítica
Recursos afectados:
Cisco Prime License Manager versiones 11.0.1 y posteriores.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-sql-injection-cisco-prime-license-manager
4 387
Dell Resets User Passwords Following Data Breach
Dell informed customers on Wednesday that the passwords for their Dell.com accounts have been reset after the company recently discovered unauthorized access on its network.
https://www.securityweek.com/dell-resets-user-passwords-following-data-breach
4 387
Alert (TA18-331A)
3ve – Major Online Ad Fraud Operation
Systems Affected
Microsoft Windows
Overview
This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). DHS and FBI are releasing this TA to provide information about a major online ad fraud operation—referred to by the U.S. Government as "3ve"—involving the control of over 1.7 million unique Internet Protocol (IP) addresses globally, when sampled over a 10-day window.
https://www.us-cert.gov/ncas/alerts/TA18-331A
4 387
Initial patch for Webex Meetings flaw WebExec was incomplete. Cisco fixed it again
https://securityaffairs.co/wordpress/78489/security/cisco-fixed-webexec-again.html
4 387
DNSpionage Campaign Targets Middle East
https://blog.talosintelligence.com/2018/11/dnspionage-campaign-targets-middle-east.html
4 387
Cursos de Machine Learning de Amazon gratis
https://aws.amazon.com/es/training/learning-paths/machine-learning/
4 387
Parrot os 4.4 includes vscodium, default btrfs support, kde edition, new golang, rust, mono, vala compilers and many new features
https://blog.parrotsec.org/parrot-4-4-release-notes/
4 387
Firecracker
Firecracker is an open source virtualization technology that is purpose-built for creating and managing secure, multi-tenant container and function-based services that provide serverless operational models. Firecracker runs workloads in lightweight virtual machines, called microVMs, which combine the security and isolation properties provided by hardware virtualization technology with the speed and flexibility of containers.
https://github.com/firecracker-microvm/firecracker
4 387
Update now! Adobe Flash has another critical security vulnerability
https://nakedsecurity.sophos.com/2018/11/22/update-now-adobe-flash-has-another-critical-security-vulnerability
4 387
Vulnerabilidad en Workstation y Fusion de VMware
Fecha de publicación: 23/11/2018
Importancia: Crítica
Recursos afectados
VMware Workstation Pro / Player versiones 15.x y 14.x ejecutándose en cualquier plataforma.
VMware Fusion Pro / Fusion versiones 11.x y 10.x ejecutándose en OS X.
Descripción
Se ha publicado una vulnerabilidad de desbordamiento de números enteros en VMware Workstation y Fusion que podría permitir que un usuario invitado ejecute código en el host.
Solución
Reemplazar o aplicar el parche correspondiente en función del producto y versión:
Para VMware Workstation Pro, aplicar 14.1.5 y 15.0.2.
Para VMware Workstation Player, aplicar 14.1.5 y 15.0.2.
Para WMware Fusion Pro / Fusion, aplicar 10.1.5 y 11.0.2.
https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-workstation-y-fusion-vmware
