August 2024 - rwth-security - lists.rwth-aachen.de

GitHub Enterprise Server vulnerable to critical auth bypass flaw
by Bernd Kohler 21 Aug '24

21 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "GitHub Enterprise Server vulnerable to critical auth bypass flaw" VG Bernd [0] https://www.bleepingcomputer.com/news/security/github-enterprise-server-vul… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Beyond the Limit: Expanding single-packet race condition with a first
by Bernd Kohler 21 Aug '24

21 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Beyond the Limit: Expanding single-packet race condition with a first sequence sync for breaking the 65,535 byte limit" VG Bernd [0] https://flatt.tech/research/posts/beyond-the-limit-expanding-single-packet-… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

New UULoader Malware Distributes Gh0st RAT and Mimikatz in East Asia
by Bernd Kohler 19 Aug '24

19 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "New UULoader Malware Distributes Gh0st RAT and Mimikatz in East Asia" --> "... UULoader's 'core' files are contained in a Microsoft Cabinet archive (.cab) file which contains two primary executables (an .exe and a .dll) which have had their file header stripped ..." --> siehe auch [1] VG Bernd [0] https://thehackernews.com/2024/08/new-uuloader-malware-distributes-gh0st.ht… [1] https://cyberint.com/blog/research/meet-uuloader-an-emerging-and-evasive-ma… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Microsoft Announces Mandatory MFA for Azure
by Bernd Kohler 19 Aug '24

19 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Microsoft Announces Mandatory MFA for Azure" VG Bernd [0] https://www.securityweek.com/microsoft-announces-mandatory-mfa-for-azure/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Defcon 32 - Vortragsfolien
by Bernd Kohler 19 Aug '24

19 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI Defcon 32 - Vortragsfolien VG Bernd [0] https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Oops I UDL'd it Again - new phishing technique
by Bernd Kohler 16 Aug '24

16 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Oops I UDL'd it Again" --> "... new phishing technique ... used to get past email filters and such ..." VG Bernd [0] https://trustedsec.com/blog/oops-i-udld-it-again -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

MIFARE Classic (FM11RF08S): exposing the static encrypted nonce
by Bernd Kohler 16 Aug '24

16 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "MIFARE Classic: exposing the static encrypted nonce variant" --> "... present several attacks and unexpected findings regarding the FM11RF08S ..." (neue Variante des MIFARE Classic) --> "... discovered a hardware backdoor and successfully cracked its key. This backdoor enables any entity with knowledge of it to compromise all user-defined keys on these cards without prior knowledge, simply by accessing the card for a few minutes" VG Bernd [0] https://eprint.iacr.org/2024/1275 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

LanDscAPe: Exploring LDAP Weaknesses and Data Leaks at Internet Scale
by Bernd Kohler 15 Aug '24

15 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "LanDscAPe: Exploring LDAP Weaknesses and Data Leaks at Internet Scale" VG Bernd [0] https://www.usenix.org/system/files/usenixsecurity24-kaspereit.pdf -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

GitHub Vulnerability 'ArtiPACKED' Exposes Repositories to Potential
by Bernd Kohler 15 Aug '24

15 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "GitHub Vulnerability 'ArtiPACKED' Exposes Repositories to Potential Takeover" VG Bernd [0] https://thehackernews.com/2024/08/github-vulnerability-artipacked-exposes.h… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Post-Quantum Cryptography Standards Officially Announced by NIST – a History and Explanation
by Bernd Kohler 13 Aug '24

13 Aug '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Post-Quantum Cryptography Standards Officially Announced by NIST – a History and Explanation" VG Bernd [0] https://www.securityweek.com/post-quantum-cryptography-standards-officially… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0