Cybersecurity News & Analysis | SC Media | Info Security News

Security News

Apache advisory addresses incomplete Tomcat update

Apache released a security advisory for Apache Tomcat to address a vulnerability, CVE-2019-10072, which could allow an attacker to cause a denial-of-service condition. The issue was caused by an incomplete fix for the CVE-2019-019 vulnerability that did not address the  window exhaustion on write. “By not sending WINDOW_UPDATE messages for the connection window (stream 0)…

Palo Alto’s Unit 42 discovered 10 ‘Important’ Microsoft bugs

Palo Alto’s Unit 42 researchers discovered 10 new Microsoft vulnerabilities all of which had a Maximum Severity Rating of “Important.” “The severity of the vulnerabilities discovered were all rated ‘Important,’” according to a June 20 blog post, which said that one vulnerability had been addressed in the June 2019 Microsoft Security Response Center (MSRC) update…

Insider threats

Insider exposes PII of 2.9 million Desjardins customers

The Canadian financial institution Desjardins was the victim of an insider threat resulting in the data of 2.9 million customers being exposed, including crucial personal and business information. The Montreal-based credit union was told by the Laval Police Department the information of 2.7 million individual customers, along with 173,000 business clients had been leaked. An…

The picture of threat intelligence

The long-acknowledged core problem with threat intelligence today is the software equivalent of a Yin and Yang situation. The algorithms are smart enough to catch a massive number of log anomalies, detecting any pattern deviation that might indicate an attack attempt. That said, they are not yet smart enough to identify accurately the real threats…

Plurox backdoor opens up networks to cryptominers and protocol exploits

Researchers earlier this year discovered a modular backdoor that delivers one of eight different cryptominers to infected systems, as well as malicious plug-ins that exploit the UPnP and SMB protocols. Written in C and compiled with Mingw GCC, the malware, dubbed Plurox, was discovered last February by researchers at Kaspersky, who believe they detected the…

Oracle addresses vulnerabilities with 154 security fixes

Oracle releases second WebLogic Server patch in two months

Oracle released an out-of-band patch for a WebLogic Server Deserialization vulnerability which could allow an unauthenticated attacker to remotely exploit and gain remote code execution (RCE) ability on vulnerable systems. The vulnerability, CVE-2019-2729, affected Oracle WebLogic Server, versions 10.3.6.0.0, 12.1.3.0.0, and 12.2.1.3.0, and can be exploited over a network without the need for a username…

Next post in Vulnerabilities