- rwth-security - lists.rwth-aachen.de

https://www.bleepingcomputer.com/news/security/high-severity-gitlab-flaw-lets-attackers-take-over-accounts/
by Bernd Kohler 24 May '24

24 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "High-severity GitLab flaw lets attackers take over accounts" VG Bernd [0] https://www.bleepingcomputer.com/news/security/high-severity-gitlab-flaw-le… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

free Webinar unpacking the TLS 1.3 Handshake -- explaining every
by Bernd Kohler 21 May '24

21 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "TLS 1.3 Handshake -- explaining every message" --> 29.05.2024 19:00 Uhr Pre-Requisites: [1] - Changes to TLS 1.3 Overview [2] - Changes to TLS 1.3 related to Cipher Suites [3] - Changes to TLS 1.3 related to TLS Handshake VG Bernd [0] https://www.youtube.com/watch?v=_4NUeo9mEEc [1] https://www.youtube.com/watch?v=0ylxXrN1yHs [2] https://www.youtube.com/watch?v=mV1h1e83O20 [3] https://www.youtube.com/watch?v=JA0vaIb4158 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Critical Fluent Bit flaw impacts all major cloud providers
by Bernd Kohler 21 May '24

21 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Critical Fluent Bit flaw impacts all major cloud providers" VG Bernd [0] https://www.bleepingcomputer.com/news/security/critical-fluent-bit-flaw-imp… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Keylogger in Microsoft Exchange Server Breaches Government Agencies
by Bernd Kohler 21 May '24

21 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Keylogger in Microsoft Exchange Server Breaches Government Agencies Worldwide" VG Bernd [0] https://securityonline.info/keylogger-in-microsoft-exchange-server-breaches… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Kerbhammer: Detecting Kerberos attacks with Suricata
by Bernd Kohler 20 May '24

20 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Kerbhammer: Detecting Kerberos attacks with Suricata" VG Bernd [0] https://blog.exploit.org/caster-kerbhammer/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Exploiting CVE-2024-32002: RCE via git clone
by Bernd Kohler 20 May '24

20 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Exploiting CVE-2024-32002: RCE via git clone" VG Bernd [0] https://amalmurali.me/posts/git-rce/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Ebury Botnet Malware Compromises 400,000 Linux Servers Over Past 14
by Bernd Kohler 15 May '24

15 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Ebury Botnet Malware Compromises 400,000 Linux Servers Over Past 14 Years" --> "... more than 100,000 were still compromised as of late 2023 ..." --> IoC in [2] --> "detection script" von ESET in [3] VG Bernd [0] https://thehackernews.com/2024/05/ebury-botnet-malware-compromises-400000.h… [1] https://www.welivesecurity.com/en/eset-research/ebury-alive-unseen-400k-lin… [2] https://github.com/eset/malware-ioc/tree/master/windigo [3] https://github.com/eset/malware-research/tree/master/ebury -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Google Gemini Nano real-time scam detection
by Bernd Kohler 15 May '24

15 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Gemini Nano" --> "... Gemini Nano to provide real-time alerts during a call if it detects conversation patterns commonly associated with scams ..." VG Bernd [0] https://twitter.com/madebygoogle/status/1790449419684573288 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

New WiFi Vulnerability: The SSID Confusion Attack
by Bernd Kohler 15 May '24

15 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "New WiFi Vulnerability: The SSID Confusion Attack" --> full paper [1] VG Bernd [0] https://www.top10vpn.com/research/wifi-vulnerability-ssid/ [1] https://www.top10vpn.com/assets/2024/05/Top10VPN-x-Vanhoef-SSID-Confusion.p… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0

VMware Workstation and Fusion - Broadcom Reveals Critical VMware
by Bernd Kohler 14 May '24

14 May '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Broadcom Reveals Critical VMware Flaws: Code Execution (CVE-2024-22267) and Data Leaks" VG Bernd [0] https://securityonline.info/broadcom-reveals-critical-vmware-flaws-code-exe… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

1 0