Lockbit ransomware is back!?! Says US Elections caused the takedown, blames PHP bug for fall

Lockbit page on ransomlook.io: https://www.ransomlook.io/group/lockbit3 Message: https://samples.vx-underground.org/tmp/Lockbit_Statement_2024-02-24.txt Source: https://twitter.com/vxunderground Take the message below with a grain of salt. This is just that, a message, on the internet. No proof for anything —–BEGIN PGP SIGNED MESSAGE—– Hash: SHA512 What happened. On February 19, 2024 penetration testing of two of my servers took place, at 06:39 UTC … Read more

Kritična ranjivost Citrix Netscaler Gateway i ADC-a [cert.hr]

Citrix, tvrtka koja svojim rješenjima omogućuje rad na daljinu brojnim tvrtkama i zaposlenicima, objavila je upozorenje o kritičnoj ranjivosti i pozvala sve korisnike da bez odgode ažuriraju svoje sustave. Kritična ranjivost (CVE-2023-3519) NetScaler ADC-a i NetScaler Gateway-a, već se aktivno iskorištava, ali su izdane zakrpe koje otklanjaju ranjivosti. Ranjivost CVE-2023-3519 napadaču omogućuje udaljeno izvršavanje kôda … Read more

WordPress dodatak AIOS je pohranjivao lozinke u nekriptiranom obliku [cert.hr]

AIOS (The All-In-One Security) dodatak je rješenje koje korisnicima nudi vatrozid za web aplikacije, zaštitu sadržaja i sigurnosni alat za prijavu u WordPress stranice. Otkriveno je da AIOS v5.1.9 bilježi prijave, odjave te neuspješne prijave korisnika, ali ujedno sprema i unesene lozinke. Ono što je nevjerojatno, je to da je lozinke pohranjivao u tzv. plain … Read more

Google Play uvodi nova pravila kako bi smanjili broj zlonamjernih aplikacija [cert.hr]

Nedavno smo pisali o pojavi malwarea u aplikacijama preuzetim iz legitimnih izvora. Više od 600 000 korisnika zarazilo je svoje uređaje Fleckpe malwareom preuzimanjem aplikacija iz Google Play-a. Akteri koji namjeravaju podmetnuti zlonamjerni kôd, ne čine to prilikom predaje aplikacije na provjeru, već to učine prilikom budućih ažuriranja. Iako Google redovito uklanja takve aplikacije, zlonamjerni … Read more

Juniper Networks patcher sårbarheder med høj alvorlighed i Junos OS [cert.dk]

Opdateringerne til Junos OS og Junos OS Evolved inkludere også patches til 17 andre fejl i PHP kode, Message Queuing Telemetry Transport (MQTT) og NTP, inklusive nogle sårbarheder, der har været offentlig kendte i årevis. To af PHP-fejlene, registreret som CVE-2021-21708 og CVE-2022-31627, er klassificeret som “kritisk alvorlighed”. Otte andre fejl (fire i PHP, to … Read more

Sårbarhed i Cisco SD-WAN vManage giver mulighed for omgåelse af sikkerhedsmekanismen [cert.dk]

Sårbarheden skyldes utilstrækkelig inputvalidering ved brug af REST API-funktionen. En angriber kan udnytte denne sårbarhed ved, at sende en “malformed” API-anmodning til en sårbar vManage-instans, hvilket gør det muligt for angriberen, at hente information fra og sende information til konfigurationen af ​​den berørte Cisco vManage-instans. Sårbarheden har kun betydning ved anvendelse af REST API og … Read more

Microsoft je izdao zakrpe za srpanj [cert.hr]

Microsoft je izdao zakrpe za srpanj 2023. kojima se rješava šest ranjivosti nultog dana i 132 nedostatka. Čak 37 ranjivosti omogućavalo je udaljeno izvršavanje kôda (remote code execution – RCE), a devet ih je označeno kao kritične ranjivosti. Osim udaljenog izvršavanja kôda, ranjivosti su omogućavale eskalaciju privilegija, zaobilaženje sigurnosnih značajki, otkrivanje informacija i uskraćivanje usluge … Read more

NIST Revises the Digital Signature Standard (DSS) and Publishes a Guideline for Elliptic Curve Domain Parameters [nist.gov]

Today, NIST is publishing Federal Information Processing Standard (FIPS) 186-5, Digital Signature Standard (DSS), along with NIST Special Publication (SP) 800-186, Recommendations for Discrete Logarithm-based Cryptography: Elliptic Curve Domain Source: Read More News and Events Feed by Topic

Applying the Cybersecurity Framework to Satellite Command and Control: NIST Interagency Report (IR) 8401 [nist.gov]

NIST recognizes the importance of the infrastructure that provides positioning, timing, and navigation (PNT) information to the scientific knowledge, economy, and security of the Nation. This infrastructure consists of three parts: the space segment Source: Read More News and Events Feed by Topic

NIST Requests Public Comments on SP 800-132, Recommendation for Password-Based Key Derivation: Part 1: Storage Applications [nist.gov]

NIST is in the process of a periodic review and maintenance of its cryptography standards and guidelines. Currently, we are reviewing the following publication: NIST Special Publication (SP) 800-132, Recommendation for Password-Based Key Derivation Source: Read More News and Events Feed by Topic

NIST Researchers Extend Model to Predict Minimum Investment for Optimum Cybersecurity Across Large, Weakly Connected Networks [nist.gov]

Previously, NIST researchers developed a model for predicting the minimum investment needed to achieve the optimum cybersecurity for large networks. Basically, it assessed security measures – such as monitoring, diagnostics, and more – against Source: Read More News and Events Feed by Topic

Announcement of Proposal to Update NIST SP 800-38E, Using the XTS-AES Mode for Confidentiality on Storage Devices [nist.gov]

In August 2021, NIST’s Crypto Publication Review Board announced the review of NIST Special Publication (SP) 800-38E, Recommendation for Block Cipher Modes of Operation: the XTS-AES Mode for Confidentiality on Storage Devices. In response, NIST Source: Read More News and Events Feed by Topic