Oracle has issued patches for a serious flaw in Java versions 15 to 18 which allows malicious actors to trivially forge digital signatures and TLS certificates that Java then accepts as valid. The problem lies in the Elliptic Curve Digital Signature Algorithm (ECDSA) which was re-written for Java 15 and this introduced the flaw which […]
Oracle Patches Java signature bypass flaw Read More »
Microsoft has released fixes for two zero-day vulnerabilities and 143 other flaws in the April 2022 patch Tuesday updates, which includes 10 Critical Remote Code Execution vulnerabilities. Elevation of Privilege Zero Days Microsoft’s definition of a zero day vulnerability is a vulnerability which is either publicly disclosed or actively exploited with no official fix available.
Microsoft Patch Tuesday April 2022 Read More »
Wyze has finally released fixes for vulnerabilities which could give attackers direct access to live video feeds and stored recordings in their smart cameras. Researchers at Bitdefender discovered the first of three vulnerabilities back in 2019 and then waited over a year and a half to report on the third as Wyze had not produced
Wyze Security Camera vulnerabilities Read More »
Spring is a popular enterprise grade application framework for Java, and Spring4Shell is the name given to a remote code execution vulnerability disclosed at the end of March. There has been a lot of hype and confusion in the tech press surrounding this vulnerability, including confusing it with a CVE for Spring Cloud Function which
What is the Spring4Shell vulnerability? Read More »
Google has released a patch for a zero day exploit in Google Chrome – the second zero day patched so far this year. Tracked as CVE-2022-1096, this High severity Type Confusion vulnerability was reported on 23rd March and a patch was released just 48 hours later. Google is aware that an exploit exists in the
Google Chrome Zero Day Patched Read More »
HP has issued two security advisories describing remote code execution and denial of service vulnerabilities that affect hundreds of different HP network printers. Remote code execution and buffer overflow Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution
HP warns of printer vulnerabilities Read More »
When the LAPSUS$ ransomware group broke into the network of Nvidia, the data they stole included two code signing certificates which are now being used to sign malware to help it bypass security defences. In order to prove that an application or driver is genuine and really does come from the named developer, a digital
Stolen Nvidia certs uses to sign malware Read More »
Our monthly summary of recent important security patches includes updates from Microsoft and HP Microsoft Patch Tuesday March 2022 The March security updates from Microsoft address 71 security vulnerabilities, including several rated as critical or zero-day: Microsoft Exchange Server remote code execution vulnerability ( CVE-2022-23277) allowing an authenticated malicious user to run their code with admin
March Security Updates Read More »
Akamai has published details of a DDoS attack which generated more than 53 million packets per second by abusing misconfigured PBX VoIP gateways. Amplification DDoS attacks work by abusing systems which send large responses to small queries. Thus, an attacker can transmit a number of small requests which have the ‘reply-to’ address set to the
Phone systems abused to generate record breaking DDoS attacks Read More »
A Linux kernel vulnerability dubbed ‘Dirty Pipe’ allows an attacker to change any file on the system – including read only files such as the password file. The flaw affects Linux Kernel 5.8 and later – including Android devices as well as mainstream Linux server distros. Tracked as CVE-2022-0847, the flaw in the way memory
Linux Dirty Pipe kernel vulnerability Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.