Vulnerability

Introduction to Insights by Snyk

Jul 17, 2023 By Snyk In Snyk

Learn more about Insights - a new and unique platform capability designed to help development and security teams identify and prioritize the vulnerabilities posing the greatest level of risk to the organization.

View Video

Snyk

Read more about Introduction to Insights by Snyk

The 443 Podcast - Episode 250 - New Microsoft Office 0-Day

Jul 17, 2023 By WatchGuard In WatchGuard

This week on the podcast we cover two stories that came out of Microsoft's July Patch Tuesday. The first involves an incident within Microsoft that lead to foreign cybercriminals compromising the email accounts of multiple government agencies. The second story involves an actively exploited 0-day vulnerability in Office that at the time of recording, remains unpatched.

View Video

WatchGuard

Read more about The 443 Podcast - Episode 250 - New Microsoft Office 0-Day

Adversaries Can "Log In with Microsoft" through the nOAuth Azure Active Directory Vulnerability

Jul 14, 2023 By Ross Penny In CrowdStrike

On June 20, 2023, Descope published research detailing how a combination of a flaw in Azure Active Directory and poorly integrated third-party applications — dubbed “nOAuth” — could lead to full account takeover. nOAuth is the latest in a large number of vulnerabilities and architectural weaknesses in Microsoft software and systems like Active Directory that can be exploited and put organizations at risk.

Read Post

CrowdStrike

Read more about Adversaries Can "Log In with Microsoft" through the nOAuth Azure Active Directory Vulnerability

Analysis of CVE-2023-2868 Exploitation: Campaign Targeting U.S. Entities Using Barracuda Email Security Gateway

Jul 14, 2023 By SecurityScorecard In SecurityScorecard

CVE-2023-2868, a vulnerability in the Barracuda ESG was announced on May 23. On June 15th, a report surfaced, attributing the exploitation of this vulnerability to a threat actor group tracked as UNC4841, which analysts believe is conducting espionage on behalf of the Chinese government. SecurityScorecard’s STRIKE Team consulted its datasets to identify possibly affected organizations.

Read Post

SecurityScorecard

Read more about Analysis of CVE-2023-2868 Exploitation: Campaign Targeting U.S. Entities Using Barracuda Email Security Gateway

Top 5 security concerns for infrastructure as code

Jul 14, 2023 By Eric Smalling In Snyk

Infrastructure as code (IaC) has changed how we deploy and manage our cloud infrastructure. Instead of having to manually configure servers and networks with a large operations team, we can now define our service architecture through code. IaC allows us to automate infrastructure deployment, scale our entire fleet of servers, document a history of changes to our architecture, and test incremental changes to the network.

Read Post

Snyk

Read more about Top 5 security concerns for infrastructure as code

Code Intelligence Finds New Vulnerability in protobufjs: CVE-2023-36665

Jul 13, 2023 By Code Intelligence In Code Intelligence

As part of Code Intelligence's ongoing efforts to improve the security of open-source software it continuously tests open-source projects with its JavaScript fuzzing engine, Jazzer.js, in Google's OSS-Fuzz. Recently Code Intelligence uncovered a new Prototype Pollution vulnerability in protobufjs (CVE-2023-36665) using its newly integrated Prototype Pollution bug detector. The vulnerability puts affected applications at risks of remote code execution and denial of service attacks.

Read Post

Code Intelligence

Read more about Code Intelligence Finds New Vulnerability in protobufjs: CVE-2023-36665

CVE-2023-33308: Critical Fortinet FortiOS and FortiProxy RCE Vulnerability

Jul 13, 2023 By James Liolios In Arctic Wolf

On July 11th, 2023, Fortinet published a security advisory detailing a remote code execution vulnerability affecting FortiOS and FortiProxy (CVE-2023-33308). This stack-based overflow vulnerability affects proxy policies and/or firewall policies with proxy mode and SSL deep packet inspection enabled. This CVE was discovered and responsibly disclosed to Fortinet by security researchers.

Read Post

Arctic Wolf

Read more about CVE-2023-33308: Critical Fortinet FortiOS and FortiProxy RCE Vulnerability

The Value of Vulnerability Management

Jul 12, 2023 By Tyler Reguly In Tripwire

There’s nothing that makes you feel older than realizing how much of your life you have dedicated to a single topic. At what point do you consider yourself an expert? After more than 17 years in vulnerability management, I’m starting to come around to the idea that I might be an expert in the field. Although, the main reason I feel that way is because, at this point, I’ve seen pretty much everything.

Read Post

Tripwire

Read more about The Value of Vulnerability Management

How to Deal with Hundreds of Fixes? Choosing the Right Vulnerability Management Solution

Jul 12, 2023 By Joseph Yostos In Sysdig

Relying solely on the Common Vulnerability Scoring System (CVSS) is insufficient when it comes to effective vulnerability management. While the CVSS score provides a quantitative measure of a vulnerability’s severity, it fails to capture the contextual nuances that can significantly impact the actual risk to an organization. In this article, we will discuss how best to choose a vulnerability management solution.

Read Post

Sysdig

Read more about How to Deal with Hundreds of Fixes? Choosing the Right Vulnerability Management Solution

How to strengthen security in your CI/CD pipeline

Jul 12, 2023 By Snyk In Snyk

DevSecOps refers to the integration of security practices into DevOps process. With modern development cycles, you can't afford to leave security until the end. It should be baked in at every stage. Continuous integration, continuous delivery (CI/CD) security is a big part of the DevSecOps picture. It's critical that you secure your pipelines and that the automated systems used to implement CI/CD are not vulnerable to attack.

Read Post