New Malware Lays P2P Network on Top of IPFS
A newly discovered piece of malware uses a peer-to-peer (p2p) network on top of InterPlanetary File System’s (IPFS) p2p network, Anomali’s security researchers report. Discovered in May 2019 and dubbed…
Read MoreXSS Vulnerability Exposed Google Employees to Attacks
A researcher revealed on Wednesday that he discovered a blind cross-site scripting (XSS) vulnerability that could have been exploited to attack Google employees and possibly gain access to invoices and…
Read MoreMicrosoft Patches Critical Vulnerabilities in NTLM
Microsoft on Tuesday released security patches for nearly 90 vulnerabilities, including two Critical bugs impacting the proprietary authentication protocol NTLM. Tracked as CVE-2019-1040 and CVE-2019-1019, the two security issues consist…
Read MoreTTCSIRT-213.061419: TT-CSIRT Advisory – Chrome Security Updates
Google has released a security update stating that it has found the following vulnerabilities in Google Chrome: a) Cross-origin resources size disclosure in Appcache – (CVE-2019-5837) b) Heap buffer overflow…
Read MoreTTCSIRT-212.061419: TT-CSIRT Advisory – Cisco Security Updates
Cisco has released a security update stating that a vulnerability in the web-based UI (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a…
Read MoreTTCSIRT-211.053119: TT-CSIRT Advisory – Mozilla Security Updates
Mozilla has released a security update stating that it has discovered the following vulnerabilities in Mozilla FireFox ver67.0: a) Timing Attack Vulnerability (CVE-2019-9815) – if hyperthreading is not disabled, a…
Read More