TTCSIRT-156.081318: TT-CSIRT Advisory – NetComm Security Updates
ICS-CERT has released a security update stating that the NetComm’s Wireless 4G LTE Light Industrial M2M Router is vulnerable to: a) Information Exposure b) Cross-site Request Forgery c) Cross-site Scripting…
Read MoreTTCSIRT-155.081318: TT-CSIRT Advisory – VMware Security Updates
VMware has released a security update stating that Horizon ver 6.0 – 7.0 for Windows contains an out-of-bounds read vulnerability in the Message Framework library. This issue may allow a…
Read MoreTTCSIRT-154.080718: TT-CSIRT Advisory – Mozilla Security Updates
Mozilla has released a security update stating that it has found the following critical vulnerabilities within Mozilla Thunderbird ver 60.0: a) Bug #1459162 – a buffer overflow can occur when…
Read MoreTTCSIRT-153.080718: TT-CSIRT Advisory – Drupal Security Updates
Drupal has released a security update stating that a vulnerability has been discovered in Drupal ver 8.5.5 and before where within the Symfony Library an attacker can override the path…
Read MoreThe Disconnect Between Understanding Email Threats and Preventing Them
Email continues to be the starting point for the majority of all security breaches. The 2018 Verizon Data Breaches Investigation Report (DBIR) says that email is the attack vector in…
Read MoreAttackers Circumvent Two Factor Authentication Protections to Hack Reddit
Online community site Reddit announced Wednesday that it was breached in June 2018. In a refreshingly candid advisory, it provides a basic explanation of how the incident occurred, details on…
Read More