2020 and Libraries - Information Management Today

Malware attack took down 600 computers at Volusia County Public Library

Security Affairs

JANUARY 22, 2020

System supporting libraries in Volusia County were hit by a cyber attack, the incident took down 600 computers at Volusia County Public Library (VCPL) branches. 600 staff and public access computers were taken down at Volusia County Public Library (VCPL) branches in Daytona Beach, Florida, following a cyberattack.

Libraries

Libraries Ransomware Encryption Access

CVE-2020-7247 RCE flaw in OpenSMTPD library affects many BSD and Linux distros

Security Affairs

JANUARY 29, 2020

Security researchers have spotted a vulnerability, tracked as CVE-2020-7247, that affects a core email-related library used by many BSD and Linux distributions. Security experts from Qualys have discovered a flaw, tracked as CVE-2020-7247, in OpenSMTPD. ” reads the advisory published by Qualys. Pierluigi Paganini.

Libraries

Libraries Security IT Information Security

Chrome 86.0.4240.111 fixes actively exploited CVE-2020-15999 zero-day

Security Affairs

OCTOBER 21, 2020

Google has released Chrome version 86.0.4240.111 that also addresses the CVE-2020-15999 flaw which is an actively exploited zero-day. Google has released Chrome version 86.0.4240.111 that includes security fixes for several issues, including a patch for an actively exploited zero-day vulnerability tracked as CVE-2020-15999.

Libraries

Libraries Security Information Security IT

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Drupal fixed a new flaw related PEAR Archive_Tar library

Security Affairs

JANUARY 22, 2021

Drupal development team released security updates to address a vulnerability that resides in the PEAR Archive_Tar third-party library. The Drupal development team has released security updates to address the CVE-2020-36193 vulnerability in the PEAR Archive_Tar third-party library. and 7 of the popular CMS. update to 8.9.13.

Libraries

Libraries CMS Security IT

5 Early Indicators Your Embedded Analytics Will Fail

Many application teams leave embedded analytics to languish until something—an unhappy customer, plummeting revenue, a spike in customer churn—demands change. But by then, it may be too late. In this White Paper, Logi Analytics has identified 5 tell-tale signs your project is moving from “nice to have” to “needed yesterday.".

Analytics

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It is one of the largest libraries in the world. ” reads the announcement.

Libraries

Libraries Ransomware Manufacturing Education

WhatsApp CVE-2020-1910 bug could have led to user data exposure

Security Affairs

SEPTEMBER 2, 2021

The now-fixed CVE-2020-1910 vulnerability in WhatApp ‘s image filter feature could have exposed user data to remote attackers. The flaw was discovered by Check Point experts on November 10, 2020, they discovered that the issue can allow attackers to crash WhatsApp by switching between various filters on the malicious GIF files.

Libraries

Libraries Security Access Cybersecurity

Hundreds of millions of Android users exposed to hack due to CVE-2020-8913

Security Affairs

DECEMBER 4, 2020

Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android Play Core Library versions vulnerable to CVE-2020-8913. The CVE-2020-8913 flaw is a local, arbitrary code execution vulnerability that resides exists in the SplitCompat.install endpoint in Android’s Play Core Library.

Libraries

Libraries e-Delivery Risk Passwords

Microsoft Patch Tuesday fixes CVE-2020-17087 currently under active exploitation

Security Affairs

NOVEMBER 11, 2020

Microsoft Patch Tuesday updates for November 2020 address 112 flaws, including a Windows bug that was chained with Chrome issues in attacks. The IT giant also addressed the CVE-2020-17087 Windows flaw that was chained with the CVE-2020-15999 Chrome bug in attacks in the wild. Pierluigi Paganini.

Libraries

Libraries Security Access IT

Microsoft September 2020 Patch Tuesday addresses 129 flaws

Security Affairs

SEPTEMBER 8, 2020

Microsoft September 2020 Patch Tuesday security updates address 129 vulnerabilities, including twenty critical remote code execution issues. ” CVE-2020-1129 – Microsoft Windows Codecs Library Remote Code Execution Vulnerability , which can be exploited to perform code execution if an affected system views a specially crafted image. .”

Libraries

Libraries Security Information Security IT

Microsoft Patch Tuesday, April 2020 Edition

Krebs on Security

APRIL 14, 2020

Near the top of the heap is CVE-2020-1020 , a remotely exploitable bug in the Adobe Font Manager library that was first detailed in late March when Microsoft said it had seen the flaw being used in active attacks. Further reading: Qualys breakdown on April 2020 Patch Tuesday. SANS Internet Storm Center on Patch Tuesday.

Libraries

Libraries Security Authentication IT

Expert released PoC exploit for CVE-2020-1967 DoS flaw in OpenSSL

Security Affairs

MAY 5, 2020

A proof-of-concept (PoC) exploit for the recently fixed CVE-2020-1967 denial-of-service (DoS) issue in OpenSSL has been made public. The CVE-2020-1967 vulnerability has been described as a “segmentation fault” in the SSL_check_chain function, it is the first issue addressed in OpenSSL in 2020. Pierluigi Paganini.

Libraries

Libraries Cybersecurity Security IT

Drupal addressed CVE-2020-13671 Remote Code Execution flaw

Security Affairs

NOVEMBER 19, 2020

Drupal development team has released security updates to address a remote code execution flaw, tracked as CVE-2020-13671. The vulnerability, tracked as CVE-2020-13671, has been classified as critical according to the NIST Common Misuse Scoring System. x that fix two XSS vulnerabilities affecting the CKEditor library.

CMS

CMS Libraries Security Information Security

Cyber Defense Magazine – August 2020 has arrived. Enjoy it!

Security Affairs

AUGUST 5, 2020

Cyber Defense Magazine august 2020 Edition has arrived. Here’s a Yumpu version: www.yumpu.com/en/document/view/63770162/cyber-defense-emagazine-august-2020-edition Enjoy and Thank You for Joining Us! The post Cyber Defense Magazine – August 2020 has arrived. Pierluigi Paganini. appeared first on Security Affairs.

B2C

B2C IT Libraries Information Security

Cyber Defense Magazine – July 2020 has arrived. Enjoy it!

Security Affairs

JULY 2, 2020

Cyber Defense Magazine July 2020 Edition has arrived. Here’s a Yumpu version: www.yumpu.com/en/document/read/63586241/cyber-defense-emagazine-july-2020-edition Enjoy and Thank You for Joining Us! The post Cyber Defense Magazine – July 2020 has arrived. Pierluigi Paganini. appeared first on Security Affairs.

B2C

B2C IT Libraries Information Security

Since 2020, at least 130 different ransomware families have been active

Security Affairs

OCTOBER 14, 2021

Since 2020, at least 130 different ransomware families have been active. The analysis of the temporal distribution of ransomware-related submissions revealed a sequence of peaks in the first two quarters of 2020. The post Since 2020, at least 130 different ransomware families have been active appeared first on Security Affairs.

Ransomware

Ransomware Libraries IT Security

Shh! No Hacking the Census in the Library

WIRED Threat Level

AUGUST 22, 2019

Opinion: Millions of folks filling out the 2020 Census on public library computers also are putting themselves at risk.

Libraries

Libraries Risk Security

Microsoft released out-of-band Windows fixes for 2 RCE issues

Security Affairs

OCTOBER 18, 2020

Microsoft released two out-of-band security updates to address remote code execution (RCE) bugs in the Microsoft Windows Codecs Library and Visual Studio Code. The two vulnerabilities, tracked as CVE-2020-17022 and CVE-2020-17023 , have been rated as important severity. ” reads the advisory. ” reads the advisory.

Libraries

Libraries Manufacturing Security IT

Microsoft addresses CVE-2020-0601 flaw, the first issue ever reported by NSA

Security Affairs

JANUARY 15, 2020

Microsoft Patch Tuesday updates for January 2020 address a total of 49 vulnerabilities in various products, including a serious flaw, tracked as CVE-2020-0601, in the core cryptographic component of Windows 10, Server 2016 and 2019 editions. The flaw, dubbed ‘NSACrypt’ and tracked as CVE-2020-0601, resides in the Crypt32.dll

Libraries

Libraries Encryption Security Risk

Microsoft addresses three Windows issues actively exploited

Security Affairs

APRIL 14, 2020

Microsoft Patch Tuesday security updates for April 2020 address 113 flaws, including three Windows issues that have been exploited in attacks in the wild. Microsoft Patch Tuesday security updates for April 2020 address 113 flaws, including two remote code execution flaws in Windows that are actively exploited.

Libraries

Libraries Authentication Security Risk

Google found zero-click vulnerabilities in Apple’s multimedia processing components

Security Affairs

APRIL 29, 2020

The discovery urges Apple into implementing additional security measures to protect these components, following the approach already adopted by Google to protect multimedia processing libraries. Multimedia processing libraries are used by the modern mobile OS to automatically manage multimedia files (i.e. images, audio, and videos).

Libraries

Libraries Paper Security Cybersecurity

Samsung fixes a zero-click issue affecting its phones

Security Affairs

MAY 7, 2020

Samsung released this week a security patch that addresses a critical vulnerability, tracked as CVE-2020-8899, impacting all smartphones sold since 2014. The flaw is tracked as SVE-2020-16747 in the Samsung security bulletin. system libraries.” Samsung addressed the flaw with the release of the May 2020 security updates.

IT

IT Libraries Security Access

Microsoft releases emergency security updates to fix Windows codecs

Security Affairs

JULY 1, 2020

Microsoft has silently released two out-of-band security updates through the Windows Store app to address two vulnerabilities in the Windows Codecs Library. The two issues are remote code execution vulnerabilities tracked as CVE-2020-1425 & CVE-2020-1457 that impact Windows 10 and Windows Server 2019 OSs.

Libraries

Libraries Security IT Information Security

New EvilQuest ransomware targets macOS users

Security Affairs

JULY 1, 2020

MD5: 522962021E383C44AFBD0BC788CF6DA3 6D1A07F57DA74F474B050228C6422790 98638D7CD7FE750B6EAB5B46FF102ABD @philofishal @patrickwardle @thomasareed pic.twitter.com/r5tkmfzmFT — Dinesh_Devadoss (@dineshdina04) June 29, 2020. I wonder who that is pic.twitter.com/5WLUS5GfBL — Felix (@c1truz_) June 30, 2020. " exists.

Ransomware

Ransomware Libraries Encryption Communications

Google addresses Chrome zero-day flaw actively exploited in the wild

Security Affairs

FEBRUARY 4, 2021

. “We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.” ” In 2020, Google addresses five Chrome zero-days actively exploited in the wild. CVE-2020-16009 – is a Heap buffer overflow in Freetype in Google Chrome.

Libraries

Libraries Security Access IT

Google addresses two new Chrome zero-day flaws

Security Affairs

NOVEMBER 12, 2020

Both zero-day flaws, tracked as CVE-2020-16013 and CVE-2020-16017, were reported by anonymous sources. “Google is aware of reports that exploits for CVE-2020-16013 and CVE-2020-16017 exist in the wild.” CVE-2020-16009 – is a Heap buffer overflow in Freetype in Google Chrome.

Libraries

Libraries Security IT Information Security

TeamTNT group adds new detection evasion tool to its Linux miner

Security Affairs

JANUARY 28, 2021

The TeamTNT botnet is a crypto-mining malware operation that has been active since April 2020 and that targets Docker installs. If the custom shared library exports a function with the same signature of a library that is located in the system libraries, the custom version will override it.

Libraries

Libraries IT Mining Security

Microsoft issued Out-of-Band advisory to address Autodesk FBX flaws

Security Affairs

APRIL 23, 2020

Microsoft confirmed that the issues in the Autodesk FBX library opened some of its products to remote code execution attacks when processing specially crafted 3D content. “Remote code execution vulnerabilities exist in Microsoft products that utilize the FBX library when processing specially crafted 3D content. .

Libraries

Libraries Cybersecurity Security IT

0patch releases free unofficial patches for Windows 0days exploited in the wild

Security Affairs

MARCH 27, 2020

A few days ago, Microsoft warned of hackers actively exploiting two zero-day remote code execution vulnerabilities in Windows Adobe Type Manager Library. The vulnerabilities affects the way Windows Adobe Type Manager Library handles a specially-crafted multi-master font – Adobe Type 1 PostScript format. See the link for more details.

Libraries

Libraries Risk Security IT

Hackers are using Zerologon exploits in attacks in the wild

Security Affairs

SEPTEMBER 24, 2020

Microsoft is actively tracking threat actor activity using exploits for the CVE-2020-1472 Netlogon EoP vulnerability, dubbed Zerologon. — Microsoft Security Intelligence (@MsftSecIntel) September 24, 2020. We strongly recommend customers to immediately apply security updates for CVE-2020-1472.

Authentication

Authentication Passwords Analytics Libraries

Microsoft warns of targeted attacks exploiting Windows zero-day flaws

Security Affairs

MARCH 23, 2020

Microsoft warns of hackers actively exploiting two zero-day remote code execution vulnerabilities in Windows Adobe Type Manager Library. Microsoft warns of hackers exploiting two zero-day remote code execution (RCE) vulnerabilities in the Windows Adobe Type Manager Library, both issues impact all supported versions of Windows.

Libraries

Libraries Risk Authentication Security

Google fixes the third actively exploited Chrome 0-Day since January

Security Affairs

MARCH 15, 2021

In 2020, Google addresses five Chrome zero-days actively exploited in the wild. In October, the IT giant addressed the following three zero-days: CVE-2020-15999 – The flaw is a memory corruption bug that resides in the FreeType font rendering library, which is included in standard Chrome releases.

Libraries

Libraries Security IT Information Security

Epic Manchego gang uses Excel docs that avoid detection

Security Affairs

SEPTEMBER 7, 2020

The trick used by the Epic Macnchego gang consists of compiling the documents with a.NET library called EPPlus , instead of the standard Microsoft Office software. ” The library can generate files in multiple spreadsheet formats, it also supports Excel 2019. .” ” reads the analysis published by NVISO.

Libraries

Libraries Phishing Passwords Security

A high-severity flaw affects VMware Workstation, Fusion and vSphere products.

Security Affairs

JUNE 10, 2020

VMware has addressed a high-severity information disclosure vulnerability, tracked as CVE-2020-3960 , that affects its Workstation, Fusion and vSphere virtualization products. The CVE-2020-3960 flaw was discovered by Cfir Cohen, a researcher from Google’s cloud security team. ” reads the advisory.

Cloud

Cloud Libraries Access Authentication

China-linked APT31 targets Russia for the first time

Security Affairs

AUGUST 4, 2021

. “The main objective of the dropper, the appearance of the main function of which is shown in Figure 1, is the creation of two files on the infected computer: a malicious library and an application vulnerable to DLL Sideloading (this application is then launched). The library mimics the legitimate MSVCR100.dll

Libraries

Libraries Security IT Cybersecurity

Adobe Acrobat and Reader affected by critical flaws

Security Affairs

AUGUST 11, 2020

CVE-2020-9697 Security bypass Privilege Escalation Important CVE-2020-9714 Out-of-bounds write Arbitrary Code Execution???????? CVE-2020-9693CVE-2020-9694 Security bypass Security feature bypass Critical? CVE-2020-9696CVE-2020-9712 Stack exhaustion Application denial-of-service Important?

Libraries

Libraries Security Information Security IT

A WhatsApp zero-day exploit can cost several million dollars

Security Affairs

OCTOBER 5, 2023

“The document said the exploit worked for Android versions 9 to 11, which was released in 2020, and that it took advantage of a flaw in the “image rendering library.” In 2020 and 2021, WhatsApp fixed three vulnerabilities — CVE-2020-1890, CVE-2020-1910, and CVE-2021-24041— that all involved how the app processes images.

Marketing

Marketing Libraries Sales Government

Google fixes the second zero-day in Chrome in 2 weeks actively exploited

Security Affairs

NOVEMBER 3, 2020

Google has released Chrome 86.0.4240.183 for Windows, Mac, and Linux that address ten security vulnerabilities including a remote code execution (RCE) zero-day (CVE-2020-16009) exploited by threat actors in the wild. “Google is aware of reports that an exploit for CVE-2020-16009 exists in the wild.”

Libraries

Libraries Security IT Access

Cisco Talos discloses technicals details of Chrome, Firefox flaws

Security Affairs

JULY 5, 2020

The first issue, tracked as CVE-2020-6463, is a memory corruption vulnerability that affects PDFium, an open source PDF library used by Chrome and other applications. Researchers from Cisco Talos disclosed technical details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers.

Libraries

Libraries IT Security Information Security

Telegram flaw could have allowed access to users secret chats

Security Affairs

FEBRUARY 16, 2021

The “ rlottie ” folder caught their attention, it was the folder used for the Samsung native library for playing Lottie animations, originally created by Airbnb. The research started in January 2020 and lasted until the end of August, with many pauses in between to focus on other projects.”

Access

Access Libraries Encryption Security

Zerologon attack lets hackers to completely compromise a Windows domain

Security Affairs

SEPTEMBER 14, 2020

Zerologon attack allows threat actors to take over enterprise networks by exploiting the CVE-2020-1472 patched in the August 2020 Patch Tuesday. Administrators of enterprise Windows Servers have to install the August 2020 Patch Tuesday as soon as possible to protect their systems from Zerologon attack that exploits the CVE-2020-1472.

Authentication

Authentication Passwords Libraries Paper

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

Emotet is a modular malware, its operators could develop new Dynamic Link Libraries to update its capabilities. The alert published by CISA was based on data provided by the Multi-State Information Sharing & Analysis Center (MS-ISAC) and the CISA itself since July 2020.

Government

Government Libraries Cybersecurity Phishing

EastWind campaign targets Russian organizations with sophisticated backdoors

Security Affairs

AUGUST 12, 2024

. “Attackers use the classic DLL sideloading technique: when the desktop.exe file is launched, the malicious VERSION.dll library is loaded into the corresponding process” reads the report published by Kaspersky. “This library is a backdoor packed with the VMProtect tool. It also bears similarities to PlugX.”

Libraries

Libraries Encryption Cloud Archiving

SUPERNOVA backdoor that emerged after SolarWinds hack is likely linked to Chinese actors

Security Affairs

MARCH 9, 2021

The attackers were observed exploiting the CVE-2020-10148 authentication bypass issue in the SolarWinds Orion API to remotely execute API commands. “In late 2020, Secureworks ® Counter Threat Unit (CTU) researchers observed a threat actor exploiting an internet-facing SolarWinds server to deploy the SUPERNOVA web shell. .

Access

Access Libraries Authentication Security

Malware attack took down 600 computers at Volusia County Public Library

CVE-2020-7247 RCE flaw in OpenSMTPD library affects many BSD and Linux distros

Webinars

Trending Sources

Chrome 86.0.4240.111 fixes actively exploited CVE-2020-15999 zero-day

Webinars

Drupal fixed a new flaw related PEAR Archive_Tar library

5 Early Indicators Your Embedded Analytics Will Fail

Rhysida ransomware gang is auctioning data stolen from the British Library

WhatsApp CVE-2020-1910 bug could have led to user data exposure

Hundreds of millions of Android users exposed to hack due to CVE-2020-8913

Microsoft Patch Tuesday fixes CVE-2020-17087 currently under active exploitation

Microsoft September 2020 Patch Tuesday addresses 129 flaws

Microsoft Patch Tuesday, April 2020 Edition

Expert released PoC exploit for CVE-2020-1967 DoS flaw in OpenSSL

Drupal addressed CVE-2020-13671 Remote Code Execution flaw

Cyber Defense Magazine – August 2020 has arrived. Enjoy it!

Cyber Defense Magazine – July 2020 has arrived. Enjoy it!

Since 2020, at least 130 different ransomware families have been active

Shh! No Hacking the Census in the Library

Microsoft released out-of-band Windows fixes for 2 RCE issues

Microsoft addresses CVE-2020-0601 flaw, the first issue ever reported by NSA

Microsoft addresses three Windows issues actively exploited

Google found zero-click vulnerabilities in Apple’s multimedia processing components

Samsung fixes a zero-click issue affecting its phones

Microsoft releases emergency security updates to fix Windows codecs

New EvilQuest ransomware targets macOS users

Google addresses Chrome zero-day flaw actively exploited in the wild

Google addresses two new Chrome zero-day flaws

TeamTNT group adds new detection evasion tool to its Linux miner

Microsoft issued Out-of-Band advisory to address Autodesk FBX flaws

0patch releases free unofficial patches for Windows 0days exploited in the wild

Hackers are using Zerologon exploits in attacks in the wild

Microsoft warns of targeted attacks exploiting Windows zero-day flaws

Google fixes the third actively exploited Chrome 0-Day since January

Epic Manchego gang uses Excel docs that avoid detection

A high-severity flaw affects VMware Workstation, Fusion and vSphere products.

China-linked APT31 targets Russia for the first time

Adobe Acrobat and Reader affected by critical flaws

A WhatsApp zero-day exploit can cost several million dollars

Google fixes the second zero-day in Chrome in 2 weeks actively exploited

Cisco Talos discloses technicals details of Chrome, Firefox flaws

Telegram flaw could have allowed access to users secret chats

Zerologon attack lets hackers to completely compromise a Windows domain

CISA alert warns of Emotet attacks on US govt entities

EastWind campaign targets Russian organizations with sophisticated backdoors

SUPERNOVA backdoor that emerged after SolarWinds hack is likely linked to Chinese actors

Stay Connected