TTCSIRT-207.042319: TT-CSIRT Advisory – Drupal Security Updates
Drupal has released a security update stating that the following vulnerabilities have been discovered in the Drupal Core Module: a) Validation messages were not escaped when using the form theme…
Read MoreTTCSIRT-206.042319: TT-CSIRT Advisory – Cisco Security Updates
Cisco has released a security update stating that it has discovered a vulnerability in the development shell (devshell) authentication for Cisco Aironet Series Access Points (APs) where an attacker could…
Read MoreTTCSIRT-205.040919: TT-CSIRT Advisory – Samba Security Updates
Samba Team has released a security update stating that Samba contains an RPC endpoint emulating the Windows registry service API. One of the requests, “winreg_SaveKey”, is susceptible to a path/symlink…
Read MoreTTCSIRT-204.040919: TT-CSIRT Advisory – Apache Security Updates
Apache has released a security update stating that in Apache HTTP Server 2.4 releases, a race condition in mod_auth_digest when running in a threaded server could allow a user with…
Read MoreCost of Data Breach in UK Increases More Than 41% in Two Years
The UK government, in the form of the Department for Digital, Culture, Media and Sport (DCMS) has published its fourth annual breaches survey: the Cyber Security Breaches Survey 2019. It…
Read MoreOngoing DNS Hijacking Campaign Targets Gmail, PayPal, Netflix Users
A DNS hijacking campaign that has been ongoing for the past three months is targeting the users of popular online services, including Gmail, PayPal, and Netflix. As part of the…
Read More