Security Affairs

OCTOBER 19, 2022

Researcher discovered a remote code execution vulnerability in the open-source Apache Commons Text library. GitHub’s threat analyst Alvaro Munoz discovered a remote code execution vulnerability, tracked as CVE-2022-42889, in the open-source Apache Commons Text library. ” reads the post published by Munoz.

Libraries 190

Libraries Security IT Information Security 190

Security Affairs

MARCH 27, 2020

A few days ago, Microsoft warned of hackers actively exploiting two zero-day remote code execution vulnerabilities in Windows Adobe Type Manager Library. The vulnerabilities affects the way Windows Adobe Type Manager Library handles a specially-crafted multi-master font – Adobe Type 1 PostScript format.

Libraries 357

Libraries Risk Security IT 357

Security Affairs

JUNE 17, 2022

Every document library in SharePoint Online and OneDrive is characterized with a set of attributes, including the number of saved versions that can be changed by the site owner can change, regardless of their other roles. The versioning settings are under list settings for each document library. . ” . .”

Libraries 283

Libraries Encryption Ransomware Cloud 283

Security Affairs

DECEMBER 4, 2020

Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android Play Core Library versions vulnerable to CVE-2020-8913. The CVE-2020-8913 flaw is a local, arbitrary code execution vulnerability that resides exists in the SplitCompat.install endpoint in Android’s Play Core Library.

Libraries 340

Libraries e-Delivery Risk Passwords 340

Security Affairs

MARCH 23, 2020

Microsoft warns of hackers actively exploiting two zero-day remote code execution vulnerabilities in Windows Adobe Type Manager Library. Microsoft warns of hackers exploiting two zero-day remote code execution (RCE) vulnerabilities in the Windows Adobe Type Manager Library, both issues impact all supported versions of Windows.

Libraries 336

Libraries Risk Authentication Security 336

Security Affairs

MARCH 3, 2020

The “ AutoUpdate.dll” library then gains persistence by setting the following registry key “ HKCUSoftwareMicrosoftWindowsCurrentVersionRunOnceWindowsDefender ”. In order to hide the malicious operation and avoid raising suspicion, a legit document is created in the same folder containing the “.scr” Figure 6: Legit document overview.

IT 363

IT File names Libraries Communications 363

Security Affairs

FEBRUARY 16, 2021

dll: Windows legitimate DLL for runtime dependencies – MICROSOFT® C RUNTIME LIBRARY. dll: Windows legitimate DLL for runtime dependencies – MICROSOFT® C RUNTIME LIBRARY. If a path is passed, then the library is only loaded from the specific path. com/document/d/1wG-npl-Rx1WT00cYpjvrE_V_PzzxuavKLkpvYReLjvw/edit.

Libraries 334

Libraries Communications Phishing Encryption 334

Security Affairs

DECEMBER 26, 2020

Recent spam campaigns used messages with malicious Word documents, or links to them, pretending to be an invoice, shipping information, COVID-19 information , resumes, financial documents, or scanned documents. Emotet is a modular malware, its operators could develop new Dynamic Link Libraries to update its capabilities.

Ransomware 350

Ransomware Libraries Cybersecurity Security 350

Security Affairs

SEPTEMBER 7, 2024

CVE-2024-7262 Kingsoft WPS Office Path Traversal Vulnerability: An improper path validation vulnerability in Kingsoft WPS Office (versions 12.2.0.13110 to 12.2.0.16412) allows attackers to load arbitrary Windows libraries via the promecefpluginhost.exe. According to the WPS website , WPS Office has over 500 million active users worldwide.

IT 329

IT Libraries Cybersecurity Risk 329

Security Affairs

APRIL 14, 2020

The two RCE flaws in Windows, tracked as CVE-2020-1020 and CVE-2020-0938 , are related to the Adobe Type Manager Library. In March, Microsoft warned of hackers exploiting the two zero-day remote code execution (RCE) vulnerabilities in the Windows Adobe Type Manager Library, both issues impact all supported versions of Windows.

Libraries 333

Libraries Authentication Security Risk 333

Security Affairs

JULY 5, 2020

The first issue, tracked as CVE-2020-6463, is a memory corruption vulnerability that affects PDFium, an open source PDF library used by Chrome and other applications. An attacker could trigger the issue by tricking the user into opening a specially crafted document that contains JavaScript code.

Libraries 354

Libraries IT Security Information Security 354

Security Affairs

JULY 24, 2024

In addition to this shared infrastructure, Macma and other malware in the Daggerfly’s arsenal, including Mgbot all contain code from a single, shared library or framework. Elements of this library have been used to build Windows, macOS, Linux, and Android threats. ” concludes the report.

Libraries 334

Libraries IT Information Security Security 334

Security Affairs

OCTOBER 5, 2023

TechCrunch reported that a zero-day exploits for popular applications like WhatsApp “are now worth millions of dollars” TechCrunch obtained leaked documents that demonstrate that, as of 2021, a zero-click, zero-day exploit for the Android version of WhatsApp had a bounty between $1.7 and $8 million.

Marketing 352

Marketing Libraries Sales Government 352

Security Affairs

OCTOBER 6, 2020

Recent spam campaigns used messages with malicious Word documents, or links to them, pretending to be an invoice, shipping information, COVID-19 information , resumes, financial documents, or scanned documents. Emotet is a modular malware, its operators could develop new Dynamic Link Libraries to update its capabilities.

Government 357

Government Libraries Cybersecurity Phishing 357

Security Affairs

MAY 14, 2024

. “An unauthenticated attacker who successfully exploited this vulnerability could gain code execution through convincing a user to open a malicious document at which point the attacker could execute arbitrary code in the context of the user.” ” reads the advisory.

Security 315

Security Libraries IT Information Security 315

AIIM

NOVEMBER 19, 2019

When I teach, questions often come up about the differences and similarities between document management and records management. Document Management. Document management is used to track and manage documents that are in process. Drafting: The contents of the document are created by one or more contributors.

Records Management 130

Records Management Metadata Insurance Libraries 130

Security Affairs

MARCH 28, 2019

The flaw is an “Absolute Path Traversal” issue in the library that could be exploited to execute arbitrary code by using a specially-crafted file archive. The issue affects a third-party library, called UNACEV2.DLL DLL that is used by WINRAR, it resides in the way an old third-party library, called UNACEV2.DLL,

Archiving 272

Archiving File names Education Libraries 272

CILIP

FEBRUARY 1, 2024

New Future Libraries project to support resilience and strategic growth in Public Libraries Future Libraries is a two-part initiative from CILIP to challenge and engage librarians and library leaders to reimagine libraries in a world of evolving living and working patterns in the context of a rapidly changing world.

Libraries 96

Libraries IT 96

Security Affairs

SEPTEMBER 6, 2023

Below are the improvements implemented after the investigation: Identified and resolved race Condition that allowed the signing key to be present in crash dumps Enhanced prevention, detection, and response for key material erroneously included in crash dumps Enhanced credential scanning to better detect presence of signing key in the debugging environment (..)

Authentication 340

Authentication Libraries Access Government 340

Security Affairs

APRIL 18, 2024

The attackers employed the lure of a free IP scanning tool to infect the systems with the Anunak backdoor and gain an initial foothold using living-off-the-land binaries, scripts, and libraries (lolbas). OpenSSH is also used for external access.

Phishing 329

Phishing Manufacturing Libraries IT 329

AIIM

JULY 15, 2021

Documents are hard to locate, security is an afterthought and every group has its own way of “managing content". New groups have new document types they would like to upload so more content types are created, but without considering other document types already being used. Tip #1: Planning is Everything.

Libraries 195

Libraries Metadata Access Security 195

Security Affairs

MAY 2, 2024

Dropbox Sign is a service that allows users to electronically sign and request signatures on documents. It integrates with Dropbox storage, so users can sign and store documents in one place without ever leaving the Dropbox platform.

Passwords 334

Passwords Authentication Access Phishing 334

Security Affairs

FEBRUARY 1, 2019

Today, weaponized Microsoft office documents with macros, are one of the most common and more effective methods to deliver malware, because they also rely on simple social engineering tricks to lure users to enable them. . Figure 2 – Document view inviting to enable macro. Table 2 – Fake PNG, powershell script information. Conclusions.

Libraries 274

Libraries Phishing Security IT 274

Security Affairs

NOVEMBER 10, 2022

Apple released out-of-band patches for iOS and macOS to fix a couple of code execution vulnerabilities in the libxml2 library. Apple released out-of-band patches for iOS and macOS to address two code execution flaws, tracked as CVE-2022-40303 and CVE-2022-40304 , in the libxml2 library for parsing XML documents.

Libraries 246

Libraries Security IT Information Security 246

Security Affairs

JULY 2, 2020

Here’s a Yumpu version: www.yumpu.com/en/document/read/63586241/cyber-defense-emagazine-july-2020-edition Enjoy and Thank You for Joining Us! Always free, no strings attached.

B2C 302

B2C IT Libraries Information Security 302

Security Affairs

NOVEMBER 14, 2023

Three of these vulnerabilities are actively exploited in attacks in the wild: – CVE-2023-36033 – Windows DWM Core Library Elevation of Privilege Vulnerability An attacker can trigger this vulnerability to elevate privileges through the Windows Desktop Manager (DWM).

Security 327

Security Cloud Libraries Phishing 327

Security Affairs

OCTOBER 4, 2022

Threat actors sent spear-phishing emails using malicious Amazon-themed documents as lures. The experts spotted a dynamically linked library, codenamed FudModule.dll, that tries to disable various Windows monitoring features. The library modify kernel variables and remove kernel callbacks in the attempt to disable the features.

Libraries 246

Libraries Phishing Security IT 246

Security Affairs

SEPTEMBER 7, 2021

Ghostscript is a suite of software based on an interpreter for Adobe Systems’ PostScript and Portable Document Format (PDF) page description languages. The library is widely used by many servers that leverage it for image conversion and is used as part of the file upload processing application, such as ImageMagick.

Libraries 292

Libraries Education Security IT 292

Security Affairs

AUGUST 9, 2022

Microsoft Office Documents. Microsoft Office Documents. PEframe is an open source tool to perform static analysis of malware executables and malicious MS Office documents. PdfParser, a standalone PHP library, provides various tools to extract data from a PDF file. Some files are more used in attacks. Compressed files.

Libraries 270

Libraries Metadata Education Security 270

Security Affairs

AUGUST 5, 2020

Here’s a Yumpu version: www.yumpu.com/en/document/view/63770162/cyber-defense-emagazine-august-2020-edition Enjoy and Thank You for Joining Us! Always free, no strings attached.

B2C 303

B2C IT Libraries Information Security 303

Security Affairs

OCTOBER 2, 2020

The activity of the cyber espionage group was first documented by ESET experts Matthieu Faou and Francis Labelle in a talk at the Virus Bulletin 2020 security conference. The malware samples analyzed by the researchers are slightly obfuscated using string obfuscation and dynamic Windows API library loading.

Military 360

Military Phishing Passwords Government 360

Security Affairs

OCTOBER 25, 2021

In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. This problem is completely resolved in new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. CVE-2021-32569.

Cleanup 274

Cleanup Data migration Libraries Passwords 274

Security Affairs

SEPTEMBER 12, 2018

exe will drop malware components — several C++ and Python libraries and the Python 2.7 Core dynamic-link library (DLL) — along with the main ransomware executable (lockyfud.exe, which was created via PyInstaller ) in C:Users{user}AppDataLocalTempis-{random}.tmp.” When successfully run, the Facture_23100.31.07.2018.exe

Ransomware 276

Ransomware Libraries Encryption Archiving 276

eSecurity Planet

SEPTEMBER 22, 2022

Trellix security researchers have revealed a major vulnerability in the Python tarfile library that could be exploited in software supply chain attacks. The post Unpatched Python Library Affects More Than 300,000 Open Source Projects appeared first on eSecurityPlanet. Python Docs Warn of Issue. files and prints the vulnerable ones.

Libraries 113

Libraries Archiving Risk Security 113

Security Affairs

MAY 12, 2020

Zeus Sphinx is distributed through malspam campaigns that use weaponized office documents. The malware achieves persistence by adding a Run key to the Windows Registry, it can come in two different formats, an executable file or a dynamic link library (DLL).

Libraries 341

Libraries Sales Government IT 341

Security Affairs

DECEMBER 15, 2020

’ PyMICROPSIA uses Python libraries to implements multiple operations, including data theft, Windows process and systems interaction. Experts also documented a keylogging capability implemented using the GetAsyncKeyState API as part of a separate payload.

Communications 363

Communications Libraries IT Security 363

Security Affairs

FEBRUARY 5, 2021

Below the attack chain documented by the reseachers from Palo Alto Networks: The attacker targeted an unsecured Kubelet on the internet and searched for containers running inside the Kubernetes nodes. It also hides malicious processes using library injection and encrypts the malicious payload.

Mining 300

Mining Libraries Encryption Access 300