Xebia

JUNE 19, 2023

Introduction Welcome to part three of the blog series about Application Security Testing. In this blog we are going to learn about Interactive Application Security Testing (IAST). Lastly, we will have some fun by trying out the IAST solution of Contrast Security against a vulnerable Java application.

Applications 130

Applications Testing How To Tools 130

Tenable

DECEMBER 10, 2021

CVE-2021-44228: Proof-of-Concept for Critical Apache Log4j Remote Code Execution Vulnerability Available (Log4Shell). Critical vulnerability in the popular logging library, Log4j 2, impacts a number of services and applications, including Minecraft, Steam and Apple iCloud. the vulnerability has arrived pic.twitter.com/XUR7I5ydpP.

Applications 143

Applications Research Report Games 143

Xebia

OCTOBER 8, 2023

In this blog post, you will see how AWS ECR and AWS CloudFormation overcome the rate limiting imposed by Docker Hub and provide full control over your base images. You can enable container image scanning and see which vulnerabilities live inside the public image. library/python Tag 3.7

AWS 130

AWS How To Lambda Resources 130

Tenable

NOVEMBER 20, 2023

Frequently asked questions relating to a critical vulnerability in Citrix NetScaler that has been under active exploitation for over a month, including by ransomware groups. CitrixBleed (or “Citrix Bleed”) is a name given to a critical vulnerability in Citrix NetScaler ADC and Gateway. When was this vulnerability first disclosed?

Technical Advisors 81

Technical Advisors Groups Research Network 81

Tenable

MARCH 25, 2024

Like so many other complex technological systems, OT systems in the DoD’s fleet and transportation systems are vulnerable to attacks from bad actors. In this blog post, we’ll outline the challenges involved in protecting the DoD’s transportation systems from cyberattacks, and offer OT security recommendations.

Transportation 70

Transportation Network System Infrastructure 70

Tenable

MARCH 14, 2023

9 Critical 66 Important 1 Moderate 0 Low Update March 14: This blog has been updated to reflect the correct title for CVE-2023-23397 as well as new information from Microsoft regarding the in-the-wild exploitation of this flaw. of the vulnerabilities patched this month, followed by elevation of privilege (EoP) vulnerabilities at 26.3%.

Windows 98

Windows Operating System Authentication Internet 98

Flexagon

SEPTEMBER 22, 2022

We have recently published a number of blogs on these new features, but you may be wondering what else is new and coming with FlexDeploy 6.0. Access recent, indicate favorites for quicker access, and tag several types of objects and search by tag. Identify and eliminate security vulnerabilities without compromise.

UI/UX 78

UI/UX Software Review Metrics Testing 78

The Crazy Programmer

MARCH 3, 2021

Breaches like these proved that 90 percent of the organizations carried vulnerabilities for at least 3 years. After paying my Spectrum TV bill online, I jumped on to a blog about cybersecurity attacks and the need to take it seriously. Tag along to find that out! Tag along to find that out! Prioritize Vulnerabilities.

Systems Review 147

Systems Review Guidelines Compliance Firewall 147

Tenable

FEBRUARY 24, 2020

On February 24, Google released a new stable channel update for Google Chrome for Desktop to address several vulnerabilities, including one that has been reportedly exploited in the wild. CVE-2020-6418 is a type confusion vulnerability in V8 , Google Chrome’s open-source JavaScript and WebAssembly engine. Vulnerability Management.

Linux 110

Linux Open Source Analysis Windows 110

Tenable

MAY 18, 2022

Organizations and government agencies are strongly advised to patch two newly disclosed vulnerabilities in VMware products, following warnings from VMware and the Cybersecurity and Infrastructure Security Agency. On May 18, VMware published an advisory ( VMSA-2022-0014 ) to address two vulnerabilities across several VMware products: CVE.

Authentication 99

Authentication Internet Infrastructure Research 99

Tenable

JULY 11, 2023

Microsoft’s July 2023 Patch Tuesday Addresses 130 CVEs (CVE-2023-36884) Microsoft addresses 130 CVEs including five that were exploited in the wild as zero-day vulnerabilities and guidance on the malicious use of Microsoft signed drivers. For more information, please refer to Microsoft’s blog post. It was assigned a CVSSv3 score of 8.8

Windows 98

Windows Software Review Systems Review Authentication 98

Prisma Clud

NOVEMBER 7, 2023

Some tools provide a limited view of the application landscape, but this forces security teams to manually tag resources to map assets to applications. Alerts and Vulnerabilities Contextualized With the applications and their boundaries defined, AppDNA provides visibility into alerts and associated vulnerabilities.

Applications 59

Applications Cloud Resources Groups 59

Tenable

FEBRUARY 25, 2020

Attackers are probing for vulnerable Microsoft Exchange Servers, as details surrounding a severe flaw were recently made public. On February 11, Microsoft released a patch for a severe vulnerability in Microsoft Exchange Server as part of its monthly Patch Tuesday updates. Vulnerability details. Background.

Authentication 118

Authentication Research Open Source Tools 118

Tenable

NOVEMBER 8, 2022

Microsoft’s November 2022 Patch Tuesday Addresses 62 CVEs (CVE-2022-41073) Microsoft addresses 62 CVEs including four zero-day vulnerabilities that were exploited in the wild. Elevation of privilege (EoP) vulnerabilities accounted for 41.9% CVE-2022-41073 | Windows Print Spooler Elevation of Privilege Vulnerability. 9 Critical.

Windows 101

Windows Azure Open Source Policies 101

Tenable

NOVEMBER 2, 2020

A pair of zero-day vulnerabilities in Google Chrome (CVE-2020-15999) and Microsoft Windows (CVE-2020-17087) were chained together and exploited in the wild in targeted attacks. A separate Chrome vulnerability (CVE-2020-16009) has also been exploited in the wild. Background.

Windows 103

Windows Technical Review Software Review Systems Review 103

Tenable

JUNE 8, 2021

Remote code execution (RCE) vulnerabilities accounted for 34.7% of the vulnerabilities patched this month, followed by elevation of privilege (EoP) at 26.5%. CVE-2021-31955 | Windows Kernel Information Disclosure Vulnerability. CVE-2021-31955 is an information disclosure vulnerability in the Windows Kernel (ntoskrnl.exe).

3D 93

3D Windows Research Trends 93

Lacework

APRIL 15, 2022

On April 11th, 2022 a Github repository containing information about the vulnerability was released. At the time of this writing, it appears that this vulnerability is within LDAP integration modules ( nginx-ldap-auth ) which can be co-deployed with Nginx to enable LDAP authentication against services such as Jenkins, Gitlab,etc.

Open Source 52

Open Source Authentication Analysis Examples 52

Tenable

JULY 12, 2023

Identifying vulnerable systems in your industrial environment can be complex. Find out how Tenable OT Security is designed to give you in-depth asset visibility to address these new vulnerabilities without disrupting productivity. You can read more about these in this blog post from the Tenable Research team.

Systems Review 52

Systems Review Network Technical Review Software Review 52

Tenable

OCTOBER 15, 2020

Regardless of the format in which they are delivered, security advisories are a critical mechanism for providing customers as well as infosec vendors and practitioners the necessary knowledge to ensure vulnerabilities are identified, reviewed and remediated as quickly as possible. . Disclose specific vulnerability details.

Software Review 100

Software Review Technical Review Weak Development Team Metrics 100

LaunchDarkly

JANUARY 22, 2020

In this blog post, we’re going to cover a method to reduce your risk exposure by leveraging feature flags and your existing bug bounty program. A mature application security program is crucial to preventing the many vulnerabilities that attackers exploit to gain a foothold in your infrastructure. The application security funnel.

Programming 98

Programming SDLC Research Policies 98

Tenable

JUNE 9, 2022

There’s no time for debating the severity of the vulnerability or for meetings or for change reviews. Why doesn’t leadership always share in the goal of all other critical VPR vulnerabilities. Why are we still debating the severity or potential impacts of critical, disclosed vulnerabilities in our environments?

Programming 56

Programming Technical Review Firewall Examples 56

Xebia

DECEMBER 9, 2023

What if your application is down, or worse: vulnerable to an attack? Does your DevOps team have a ‘break glass’ option [8] to fix the vulnerability without their pipelines? To limit what engineers have access to, everything is locked down and only a service account has access to production.

Software Review 130

Software Review DevOps Examples Engineering 130

Tenable

APRIL 16, 2024

But sometimes we like to give you a peek behind the curtain to share how we protect our own house against cyberattacks – and that’s what this blog is about. As has become crystal clear in recent years thanks to events like Log4j’s Log4Shell vulnerability and the SolarWinds breach, software supply chain security is critical.

Software Review 68

Software Review Software Systems Review Guidelines 68

Tenable

APRIL 12, 2024

Conduct thorough risk assessments by, for example, evaluating generative AI system risks, and identifying potential threats and vulnerabilities. Generative AI Establish clear policies and procedures by, for example, defining acceptable use cases, data-handling protocols and risk mitigation strategies.

Generative AI 118

Generative AI Malware Trends Government 118

Lacework

AUGUST 9, 2022

As a part of this overhaul, users will notice: Interactive alerting capabilities: Teams can more easily organize alerts, view tags, filter to see a set of specific alerts, change alert statuses, and add comments to better collaborate with other teams inside of the platform. and much more.

Off-The-Shelf 97

Off-The-Shelf Groups Cloud Organization 97

Palo Alto Networks

JUNE 29, 2020

Threats constantly evolve, so threat hunters must commit to keeping their knowledge up to date by following researchers, engaging in online communities and attending industry forums, allowing them to learn about new tactics and vulnerabilities. . The post How to Start Threat Hunting appeared first on Palo Alto Networks Blog.

How To 95

How To Malware Exercises Systems Review 95

Palo Alto Networks

JULY 25, 2023

Our threat hunters will leverage dedicated NGFWs enabled with the CDSS suite: Advanced Threat Prevention to detect network attacks, defend against vulnerabilities, detect malleable C2 and zero day SQLi, as well as CMDi attacks. The post Palo Alto Networks Secures Black Hat from Itself appeared first on Palo Alto Networks Blog.

Network 52

Network Firewall Conference LAN 52

The Parallax

MAY 15, 2018

The second attack goes after OpenPGP and S/MIME by using certain phrases that are known to be in the message (such as the header text “Content-type: multipart/signed”) to inject HTML image tags, fool the email software, and steal the contents of the rest of the message.

Research 185

Research Report Exercises Testing 185

Linux Academy

MARCH 25, 2019

If you have a virtual environment and are using VLAN tagging in your virtual setup, this is not a problem. Check out the previous articles in Securing Your Infrastructure : Security Awareness Training | Vulnerability Scanning | Patch Management | Data Backups | User Account Review.

Network 96

Network Infrastructure Linux Open Source 96

Cloudera

SEPTEMBER 11, 2020

In this blog post, we are going to take a look at some of the OpDB related security features of a CDP Private Cloud Base deployment. Apache Atlas-based tags or classifications. Several of Cloudera’s query engines have variable binding and query compilation making the code less vulnerable to user input and preventing SQL injections.

Policies 65

Policies Authentication Compliance Database Administration 65

Tenable

NOVEMBER 18, 2021

An unfortunate side effect of this functionality is the potential to open the doors for attackers to exploit server-side request forgery (SSRF) vulnerabilities, a complex type of web application security vulnerability with potentially significant impact. Although this mitigates the vulnerability, it is not always enough.

Applications 52

Applications AWS Network Examples 52

Linux Academy

FEBRUARY 11, 2019

All of this can be achieved in our own environment so that you don’t have to worry about introducing security vulnerabilities in your corporate environments, you don’t have to worry about management overhead, and you don’t have to worry about costs. Server Deletion Notifications & Tagging. Azure cloud console.

Training 60

Training Linux Cloud Google Cloud 60

Linux Academy

MAY 31, 2019

These tools provide reporting on changes to the operating system — but come with a price tag. Use vulnerability scanning , and keep in mind the importance of data backups , as well as passwords and policies such as using MFA and proactively identifying compromised passwords. Go out there and win!

Backup 92

Backup Linux Systems Review Operating System 92

Linux Academy

JULY 1, 2019

The study group goes over what Symantec saw as the biggest threat vulnerabilities in 2018. As much as you love our blog, remember to take a look at our Weekly Update videos! Help us get the word out about the Linux Academy Monthly Update by sharing this week Weekly Update YouTube video and tag us on Twitter. Pinehead Giveaway.

Linux 60

Linux AWS Azure Course 60

CircleCI

MAY 25, 2021

layout: post date: ‘2021-05-25 18:00’ published: false title: Adding IaC security scans to your CI pipeline with Ideni author: yoni-leitersdorf image: /blog/media/Tutorial-Beginner-C.jpg html_title: dding IaC security scans to your CI pipeline with Ideni | CircleCI description: Learn how to automate your IaC security using CirclCI and Ideni.

AWS 52

AWS Weak Development Team Policies Testing 52

Tenable

SEPTEMBER 23, 2019

Zero-day memory corruption vulnerability in Internet Explorer has been observed in attacks in the wild. On September 23, Microsoft released an out-of-band patch for a zero-day vulnerability in Internet Explorer that has been exploited in the wild. At the time this blog was published, no proof-of-concept (PoC) was available.

Internet 15

Internet Systems Review Software Review Analysis 15

Tenable

AUGUST 8, 2019

In part two of our five-part series on Vulnerability Management fundamentals, we explore the essentials of asset discovery and classification, which is the first step in the Cyber Exposure lifecycle. Maintaining a comprehensive and updated asset inventory is a fundamental and critical component of Vulnerability Management (VM) programs.

Performance 21

Performance How To Policies Operating System 21