⚠️ VULNERABILITY DISCLOSURE 2[−]
30 JunDev rejects CVE severity, makes his GitHub repo read-onlyThe popular open source project, 'ip' had its GitHub repository archived, or made "read-only" by its developer as a result of a dubious CVE report filed for his project. Unfortunately, open-source developers have recently been met with an uptick in debatable or outright bogus CVE…BLEEPINGCOMPUTER.COM
30 JunJuniper releases out-of-cycle fix for max severity auth bypass flawJuniper Networks has released an emergency update to address a maximum severity vulnerability that leads to authentication bypass in Session Smart Router (SSR), Session Smart Conductor, and WAN Assurance Router products. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 1[−]
30 JunThe State of Data Breaches, Part 2: The Trilogy of PlayersPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite Last week, I wrote about The State of Data Breaches and got loads of feedback. It was predominantly sympathetic to the position I find …TROYHUNT.COM
🕵️ THREAT INTELLIGENCE 1[−]
30 JunBSD Can 2024 - 24 videossubmitted by ashar to security_cpe 1 points | 0 comments https://youtube.com/playlist?list=PLeF8ZihVdpFfct_WnzwObWtj4y9qH3H7X&si=WzM75swBSLQLRYBpYOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
30 JunFake IT support sites push malicious PowerShell scripts as Windows fixesFake IT support sites promote malicious PowerShell "fixes" for common Windows errors, like the 0x80070643 error, to infect devices with information-stealing malware. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 1[−]
30 JunGoogle Chrome to let Isolated Web App access sensitive USB devicesGoogle is working on a new Unrestricted WebUSB feature, which allows trusted isolated web apps to bypass security restrictions in the WebUSB API. [...]BLEEPINGCOMPUTER.COM