Vulnerability

What are Product Security Incident Response Team (PSIRT) Best Practices?

Jul 14, 2021 By Craig Young In Tripwire

In my previous post, I disclosed that SonicWall had quietly released vulnerability fixes over the course of several days before vulnerability advisories were published for CVE-2020-5135. Rather than properly fixing CVE-2020-5135, SonicWall’s fix introduced a new vulnerability in the same code. SonicWall was aware of the new vulnerability but deferred the small fix until the next release, more than 6 months later.

Read Post

Tripwire

Read more about What are Product Security Incident Response Team (PSIRT) Best Practices?

Kaseya Ransomware Attack: How Did It Affect the MSSPs And What To Do To Prevent The Risk?

Jul 12, 2021 By LogSentinel In LogSentinel

Kaseya #Ransomware Attack A #cybercrime organization with Russian origins called #REvil claims to have infected 1 million systems across 17 countries. It is now demanding $ 70 million in bitcoins in exchange for a "universal decryptor" that will return users’ access. Hackers targeted the US IT company #Kaseya, and then used that company’s software to infiltrate the victims’ systems, using a zero-day vulnerability.

View Video

LogSentinel

Read more about Kaseya Ransomware Attack: How Did It Affect the MSSPs And What To Do To Prevent The Risk?

Top 5 high severity CVEs detected by Detectify since June 2020

Jul 12, 2021 By Detectify In Detectify

We’re going to highlight the Top high severity CVEs found by Detectify. Thanks to the Crowdsource global community of handpicked ethical hackers, Detectify users get continuous access to the latest threat findings “from the streets” – even actively exploited vulnerabilities for which there aren’t yet any official vendor patches or updates.

Read Post

Detectify

Read more about Top 5 high severity CVEs detected by Detectify since June 2020

Measuring security for cloud native applications

Jul 9, 2021 By Simon Maple, Field CTO In Snyk

Modern cloud-native applications - and the DevSecOps culture and practices used to manage them - introduce a fresh layer of challenges to the already thorny topic of security measurement. Historically, security has been typically measured on a regular but intermittent basis, at particular points in time. However, the pace of change at modern, cloud-native organisations, who've implemented DevSecOps and/or CI/CD, is relentless. Many deployments might be made in a single day, and the security posture of businesses might thus change dramatically over that time.

Read Post

Snyk

Read more about Measuring security for cloud native applications

Snyk Powers Docker Vulnerability Scanning

Jul 9, 2021 By Snyk In Snyk

Learn about Snyk's Docker integrations and how the companies work together to help developers secure container images quickly and efficiently early in the software application development lifecycle.

View Video

Snyk

Read more about Snyk Powers Docker Vulnerability Scanning

PrintNightmare (CVE-2021-34527): what is it and how could it affect your organisation?

Jul 8, 2021 By George Glass In Redscan

But what is PrintNightmare, why are people so worried and what can organisations do to defend themselves? We address these issues and others in this PrintNightmare security advisory, which will be updated as new information becomes available.

Read Post

Redscan

Read more about PrintNightmare (CVE-2021-34527): what is it and how could it affect your organisation?

Internal vs External Vulnerability Scans: Understanding the Difference

Jul 5, 2021 By Harshit Agarwal In Appknox

When it comes to establishing a robust mobile application security posture, vulnerability scanning is certainly the go-to option. But given the complex cybersecurity challenges of modern times, it might be complicated and challenging to implement vulnerability scanning properly. According to the 2020 Edgescan Vulnerability Statistics Report, around 35% of the vulnerabilities discovered in external-facing apps were of critical or high risk.

Read Post

Appknox

Read more about Internal vs External Vulnerability Scans: Understanding the Difference

CVE-2021-34527 PrintNightmare

Jul 5, 2021 By Cyberint Research In Cyberint

Whilst originally thought to be a local privilege escalation vulnerability in the Windows Print Spooler, identified as CVE-2021-1675 and patched during Microsoft's June Patch Tuesday, Microsoft increased the severity of this issue on June 21 as well as reclassifying it as a 'remote code execution' (RCE) threat.

Read Post

Cyberint

Read more about CVE-2021-34527 PrintNightmare

I Pity the Spool: Detecting PrintNightmare CVE-2021-34527

Jul 2, 2021 By Mauricio Velazco In Splunk

On Monday, June 21st, Microsoft updated a previously reported vulnerability (CVE-2021-1675) to increase its severity from Low to Critical and its impact to Remote Code Execution. On Tuesday, June 29th, a security researcher posted a working proof-of-concept named PrintNightmare that affects virtually all versions of Windows systems. Yesterday, July 1, Microsoft assigned this flaw a new CVE, CVE-2021-34527.

Read Post

Splunk

Read more about I Pity the Spool: Detecting PrintNightmare CVE-2021-34527

Secure Coding Practices to Prevent Vulnerabilities in SDLC

Jun 30, 2021 By Appknox In Appknox

Unlocking the Secrets of building a secure app Under 60 Minutes Build a culture of Secure Programming in your engineering team . With the amount of (attempted) security breaches and high paced sprint cycles, securing your mobile applications from day 1 is a driving force to ship applications at speed.

View Video