fa
Feedback
SysAdmin 24x7

SysAdmin 24x7

رفتن به کانال در Telegram

Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat

نمایش بیشتر
4 387
مشترکین
+124 ساعت
-47 روز
اطلاعاتی وجود ندارد30 روز
آرشیو پست ها
Injecting Code into Windows Protected Processes using COM - Part 1 https://googleprojectzero.blogspot.com/2018/10/injecting-code-into-windows-protected.html

#Wireshark 2.6.5 has been released. Enjoy. https://www.wireshark.org/docs/relnotes/wireshark-2.6.5.html

Thousands of Printers Hacked Worldwide & Hackers Promote PewDiePie YouTube Channel To Subscribe [...] Also, he said to The Verge,“ People underestimate how easy a malicious hacker could have used a vulnerability like this to cause major havoc,” “Hackers could have stolen files, installed malware, caused physical damage to the printers and even use the printer as a foothold into the inner network. [...] https://gbhackers.com/hackers-promote-pewdiepie/

Analizar entornos de servicios web de Amazon (AWS) de forma grafica. https://www.gurudelainformatica.es/2018/11/analizar-entornos-de-servicios-web-de.html

Ubuntu: incomplete fix for CVE-2018-16510 https://bugs.chromium.org/p/project-zero/issues/detail?id=1675

Vulnerabilidad SQL Injection en Cisco Prime License Manager Fecha de publicación: 29/11/2018 Importancia: 5 - Crítica Recursos afectados:  Cisco Prime License Manager versiones 11.0.1 y posteriores. https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-sql-injection-cisco-prime-license-manager

Dell Resets User Passwords Following Data Breach Dell informed customers on Wednesday that the passwords for their Dell.com accounts have been reset after the company recently discovered unauthorized access on its network. https://www.securityweek.com/dell-resets-user-passwords-following-data-breach

Alert (TA18-331A) 3ve – Major Online Ad Fraud Operation Systems Affected Microsoft Windows Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). DHS and FBI are releasing this TA to provide information about a major online ad fraud operation—referred to by the U.S. Government as "3ve"—involving the control of over 1.7 million unique Internet Protocol (IP) addresses globally, when sampled over a 10-day window. https://www.us-cert.gov/ncas/alerts/TA18-331A

Initial patch for Webex Meetings flaw WebExec was incomplete. Cisco fixed it again https://securityaffairs.co/wordpress/78489/security/cisco-fixed-webexec-again.html

Parrot os 4.4 includes vscodium, default btrfs support, kde edition, new golang, rust, mono, vala compilers and many new features https://blog.parrotsec.org/parrot-4-4-release-notes/

Firecracker Firecracker is an open source virtualization technology that is purpose-built for creating and managing secure, multi-tenant container and function-based services that provide serverless operational models. Firecracker runs workloads in lightweight virtual machines, called microVMs, which combine the security and isolation properties provided by hardware virtualization technology with the speed and flexibility of containers. https://github.com/firecracker-microvm/firecracker

Vulnerabilidad en Workstation y Fusion de VMware Fecha de publicación: 23/11/2018 Importancia: Crítica Recursos afectados VMware Workstation Pro / Player versiones 15.x y 14.x ejecutándose en cualquier plataforma. VMware Fusion Pro / Fusion versiones 11.x y 10.x ejecutándose en OS X. Descripción Se ha publicado una vulnerabilidad de desbordamiento de números enteros en VMware Workstation y Fusion que podría permitir que un usuario invitado ejecute código en el host. Solución Reemplazar o aplicar el parche correspondiente en función del producto y versión: Para VMware Workstation Pro, aplicar 14.1.5 y 15.0.2. Para VMware Workstation Player, aplicar 14.1.5 y 15.0.2. Para WMware Fusion Pro / Fusion, aplicar 10.1.5 y 11.0.2. https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/vulnerabilidad-workstation-y-fusion-vmware