- rwth-security - lists.rwth-aachen.de

Tor insists its network is safe after German cops convict CSAM
by Bernd Kohler 19 Sep '24

19 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Tor insists its network is safe after German cops convict CSAM dark-web admin" VG Bernd [0] https://www.theregister.com/2024/09/19/tor_police_germany/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

2 1

Clever 'GitHub Scanner' campaign abusing repos to push malware
by Bernd Kohler 19 Sep '24

19 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Clever 'GitHub Scanner' campaign abusing repos to push malware" VG Bernd [0] https://www.bleepingcomputer.com/news/security/clever-github-scanner-campai… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Imperius - make an LKM rootkit visible again
by Bernd Kohler 18 Sep '24

18 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Imperius" --> "part of research on LKM rootkits" --> Alternative: ModTracer [1], "research that will be launched in this year" VG Bernd [0] https://github.com/MatheuZSecurity/Imperius [1] https://github.com/MatheuZSecurity/ModTracer -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

GSM Associatio (GSMA) Plans End-to-End Encryption for Cross-Platform
by Bernd Kohler 18 Sep '24

18 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging" --> "... end-to-end encryption (E2EE) to secure messages sent between the Android and iOS ecosystems. ..." --> "... first deployment of standardized, interoperable messaging encryption between different computing platforms, addressing significant technical challenges such as key federation and cryptographically-enforced group membership. ..." VG Bernd [0] https://thehackernews.com/2024/09/gsma-plans-end-to-end-encryption-for.html -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Linux 6.12 Landing Integrity Policy Enforcement "IPE" Module
by Bernd Kohler 18 Sep '24

18 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Linux 6.12 Landing Integrity Policy Enforcement "IPE" Module" --> "... part of the Linux Security Modules (LSM) updates for the Linux 6.12 kernel is the new Integrity Policy Enforcement (IPE) ..." --> "... Integrity Policy Enforcement is an alternative to access controls ..." VG Bernd [0] https://www.phoronix.com/news/Linux-6.12-IPE-LSM-Security -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

VMware Patches Remote Code Execution Flaw Found in Chinese Hacking
by Bernd Kohler 18 Sep '24

18 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest" VG Bernd [0] https://www.securityweek.com/vmware-patches-remote-code-execution-flaw-foun… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Chrome switching to NIST-approved ML-KEM quantum encryption
by Bernd Kohler 17 Sep '24

17 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Chrome switching to NIST-approved ML-KEM quantum encryption" VG Bernd [0] https://www.bleepingcomputer.com/news/security/chrome-switching-to-nist-app… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

CVE-2024-38816: Spring Framework Path Traversal Vulnerability
by Kohler, Bernd 16 Sep '24

16 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "CVE-2024-38816: Spring Framework Path Traversal Vulnerability Threatens Millions" VG Bernd [0] https://securityonline.info/cve-2024-38816-spring-framework-path-traversal-… --- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Seffenter Weg 23 52074 Aachen Tel: +49 241 80-29793 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de

1 0

New Android Malware Ajina.Banker Steals 2FA Codes, Spreads via
by Bernd Kohler 13 Sep '24

13 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "New Android Malware Ajina.Banker Steals 2FA Codes, Spreads via Telegram" VG Bernd [0] https://hackread.com/android-malware-ajina-banker-steal-2fa-codes-telegram/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

New Linux Malware Campaign Exploits Oracle Weblogic to Mine
by Bernd Kohler 13 Sep '24

13 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "New Linux Malware Campaign Exploits Oracle Weblogic to Mine Cryptocurrency" VG Bernd [0] https://thehackernews.com/2024/09/new-linux-malware-campaign-exploits.html -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0