- rwth-security - lists.rwth-aachen.de

Microsoft Adds Support for Post-Quantum Algorithms in SymCrypt
by Bernd Kohler 12 Sep '24

12 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Microsoft Adds Support for Post-Quantum Algorithms in SymCrypt Library" VG Bernd [0] https://www.securityweek.com/microsoft-adds-support-for-post-quantum-algori… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

GitLab Issues Critical Security Patch for CVE-2024-6678 (CVSS 9.9),
by Bernd Kohler 12 Sep '24

12 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "GitLab Issues Critical Security Patch for CVE-2024-6678 (CVSS 9.9), Urges Immediate Update" --> "... upgrading to 17.3.2, 17.2.5, or 17.1.7 is critical to maintaining the security and integrity of your GitLab environment ..." VG Bernd [0] https://securityonline.info/gitlab-issues-critical-security-patch-for-cve-2… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Windows into the Past: Exploiting Legacy Crypto in Modern OS’s Kerberos Implementation
by Bernd Kohler 10 Sep '24

10 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Windows into the Past: Exploiting Legacy Crypto in Modern OS’s Kerberos Implementation" --> git Repo [1] "KerberosSmartcardPaddingOracleAttack" VG Bernd [0] https://www.usenix.org/system/files/usenixsecurity24-shagam.pdf [1] https://github.com/MichalSha/KerberosSmartcardPaddingOracleAttack/?tab=read… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Bug lets anyone bypass WhatsApp’s ‘View Once’ privacy feature
by Bernd Kohler 09 Sep '24

09 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Bug lets anyone bypass WhatsApp’s ‘View Once’ privacy feature" VG Bernd [0] https://techcrunch.com/2024/09/09/bug-lets-anyone-bypass-whatsapps-view-onc… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

A True Random Number Generator: Jitter Flucuations
by Bernd Kohler 09 Sep '24

09 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "A True Random Number Generator: Jitter Flucuations" --> neuer Zufallszahlen Generator (RNG) in OpenSSL 3.4: Jitter --> bisher (bspw. OpenSSL 3.0.14) openssl list -random-generators CTR-DRBG @ default HASH-DRBG @ default HMAC-DRBG @ default SEED-SRC @ default TEST-RAND @ default --> genaue Change-Liste [1] --> erste Alpha-Version [2] --> Release laut [3] "Thursday, 5th Sept. 2024" VG Bernd [0] https://medium.com/asecuritysite-when-bob-met-alice/a-true-random-number-ge… [1] https://github.com/openssl/openssl/blob/master/CHANGES.md [2] https://github.com/openssl/openssl/releases/tag/openssl-3.4.0-alpha1 [3] https://openssl-foundation.org/post/2024-08-16-3.4-alpha-approaching/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Gemeinsamer Sicherheitshinweis zu Cyberaktivitäten der russischen GRU-Einheit 29155
by Bernd Kohler 09 Sep '24

09 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Gemeinsamer Sicherheitshinweis zu Cyberaktivitäten der russischen GRU-Einheit 29155" --> der gemeinsame Sicherheitshinweis komplett als PDF [1] --> Hinweis der CISA [2] - dort auch mit IoC's VG Bernd [0] https://www.verfassungsschutz.de/SharedDocs/kurzmeldungen/DE/2024/2024-09-0… [1] https://www.verfassungsschutz.de/SharedDocs/publikationen/DE/cyberabwehr/20… [2] https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-249a -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

New RAMBO attack steals data using RAM in air-gapped computers
by Bernd Kohler 07 Sep '24

07 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "New RAMBO attack steals data using RAM in air-gapped computers" --> "... "RAMBO" (Radiation of Air-gapped Memory Bus for Offense) generates electromagnetic radiation from a device's RAM to send data from air-gapped computers ..." VG Bernd [0] https://www.bleepingcomputer.com/news/security/new-rambo-attack-steals-data… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

CVE Hunting Made Easy
by Bernd Kohler 07 Sep '24

07 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "CVE Hunting Made Easy" --> Info des Autoren: "found 14 CVEs by downloading every Wordpress plugin and scanning all of it with Semgrep - full dataset published if you want to do some sifting yourself, there's plenty of output I haven't looked at." VG Bernd [0] https://projectblack.io/blog/cve-hunting-at-scale/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

deepfakes - faceswap
by Bernd Kohler 06 Sep '24

06 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "faceswap" --> "... tool that utilizes deep learning to recognize and swap faces in pictures and videos ..." VG Bernd [0] https://github.com/deepfakes/faceswap -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

SpyAgent Android malware steals your crypto recovery phrases from
by Bernd Kohler 06 Sep '24

06 Sep '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "SpyAgent Android malware steals your crypto recovery phrases from images" --> "... uses optical character recognition (OCR) ..." VG Bernd [0] https://www.bleepingcomputer.com/news/security/spyagent-android-malware-ste… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0