CISO Express | A Security Professional’s Home Page

Microsoft Security Advisory

Microsoft Security Response Center

  • BlueHat Seattle 2019 Call for Papers is Now Open!
    2019 has seen a phenomenal BlueHatIL in February followed by a wildly successful BlueHat Shanghai in May… now it’s time to come back home for BlueHat Seattle!  2 days of hands-on technical training (October 22-23, 2019)  2 days of conference ta…
    - 3 Sep 19, 11:01pm -
  • Acquiring a VHD to Investigate
    In a previous post we described some of the differences between on-premises/physical forensics and cyber investigations and those performed in the cloud, and how this can make cloud forensics challenging. That blog post described a method of creating…
    - 3 Sep 19, 7:30pm -

Zero Day Initiative Upcoming Advisories

  • ZDI-CAN-5863: Wecon

    ZDI-CAN-5863: Wecon

    A CVSS score 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C) severity vulnerability discovered by 'Mat Powell - Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2018-03-09, 0 days ago. The vendor is given until 2018-07-07 to publish a fix or…
    - 9 Mar 18, 12:00pm -
  • ZDI-CAN-5875: Wecon

    ZDI-CAN-5875: Wecon

    A CVSS score 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C) severity vulnerability discovered by 'nsfocus security team.' was reported to the affected vendor on: 2018-03-09, 0 days ago. The vendor is given until 2018-07-07 to publish a fix or workaround. Once the…
    - 9 Mar 18, 12:00pm -

US-CERT Alerts

US-CERT Bulletin

  • Vulnerability Summary for the Week of February 3, 2020
    Original release date: February 10, 2020 | Last revised: February 12, 2020The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS…
    - 7 days ago 10 Feb 20, 12:28pm -
  • Vulnerability Summary for the Week of January 27, 2020
    Original release date: February 3, 2020 | Last revised: February 4, 2020The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS s…
    - 14 days ago 3 Feb 20, 4:36pm -

US-CERT Activity

  • Be Cautious of Romance Scams
    Original release date: February 14, 2020This Valentine’s Day, the Cybersecurity and Infrastructure Security Agency (CISA) reminds users to be wary of internet romance scams. Cyber criminals partaking in this type of fraud target victims, gain their…
    - 3 days ago 14 Feb 20, 3:39pm -
  • North Korean Malicious Cyber Activity
    Original release date: February 14, 2020The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense (DoD) have identified the following malware variants used by the North Korea…
    - 3 days ago 14 Feb 20, 12:40pm -

Joomla Security Advisory

  • [20200103] - Core - XSS in com_actionlogs

    [20200103] - Core - XSS in com_actionlogs

    Project: Joomla!SubProject: CMSImpact: HighSeverity: LowVersions: 3.9.0-3.9.14Exploit type: XSSReported Date: 2019-December-25Fixed Date: 2020-January-28CVE Number: CVE-2020-8421DescriptionInadequate escaping of usernames allow XSS attacks…
    - 20 days ago 28 Jan 20, 1:00pm -
  • [20200102] - Core - CSRF com_templates LESS compiler

    [20200102] - Core - CSRF com_templates LESS compiler

    Project: Joomla!SubProject: CMSImpact: HighSeverity: LowVersions: 3.0.0-3.9.14Exploit type: CSRFReported Date: 2019-December-18Fixed Date: 2020-January-28CVE Number: CVE-2020-8420DescriptionA missing CSRF token check in the LESS compiler of…
    - 20 days ago 28 Jan 20, 1:00pm -

Wordpress Advisory

  • People of WordPress: Kori Ashton

    People of WordPress: Kori Ashton

    You’ve probably heard that WordPress is open-source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares som…
    - 2 days ago 14 Feb 20, 9:12pm -
  • WordCamp Asia Cancelled Due to COVID-19
    I’ve arrived at the difficult decision to cancel the inaugural WordCamp Asia event, which was planned to take place in Bangkok on February 21st. The excitement and anticipation around this event have been huge, but there are too many unknowns aroun…
    - 5 days ago 12 Feb 20, 4:23am -

Adobe Security Advisory

  • Security Bulletins Posted
    Adobe has published security bulletins for Adobe Framemaker (APSB20-04), Adobe Acrobat and Reader (APSB20-05), Adobe Flash Player (APSB20-06), Adobe Digital Edition (APSB20-07) and Adobe Experience Manager (APSB20-08). Adobe recommends users update…
    - 6 days ago 11 Feb 20, 7:30am -
  • Upcoming Security Updates for Adobe Acrobat and Reader (APSB20-05)
    A prenotification security advisory (APSB20-05) has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for Tuesday, February 11, 2020. We will continue to provide updates on the upcoming release via the Security Bulletins and A…
    - 11 days ago 6 Feb 20, 6:13am -

Oracle Security Advisory

Linux Security Advisory

ICS-CERT Advisory

    Cisco Security Advisory

      Cisco Security Response

        Cisco IPS Threat Defense Bulletins

          IBM Security Advisory by IBM PSIRT

          AWS Security Advisory by Amazon

          • Kubernetes Security Issue (CVE-2019-11249)
            Last Updated: August 15, 2019 9:00AM PDT CVE Identifier: CVE-2019-11249 AWS is aware of a security issue (CVE-2019-11249) which resolves incomplete fixes for CVE-2019-1002101 and CVE-2019-11246. Like the aforementioned CVEs, the issue is in the Kub…
            - 15 Aug 19, 5:33pm -
          • Kubernetes Security Issue (CVE-2019-11246)
            July 02, 2019 2:00 PM PDT CVE Identifier: CVE-2019-11246 AWS is aware of a security issue (CVE-2019-11246) in the Kubernetes kubectl tool that could allow a malicious container to replace or create files on a user's workstation. If a user were to…
            - 6 Aug 19, 3:02pm -

          Google Chrome Security Advisory

          • Dev Channel Update for Desktop

            Dev Channel Update for Desktop

            The Dev channel has been updated to 82.0.4056.3 for Windows and Mac. Linux platform will be updated next week.A partial list of changes is available in the log. Interested in switching release channels? Find out how. If you find a new issue, please l…
            - 2 days ago 14 Feb 20, 7:53pm -
          • Stable Channel Update for Desktop

            Stable Channel Update for Desktop

            The stable channel has been updated to 80.0.3987.106 for Windows, Mac, and Linux, which will roll out over the coming days/weeks.A list of all changes is available in the log. Interested in switching release channels? Find out how. If you find a ne…
            - 3 days ago 13 Feb 20, 10:25pm -

          Symantec Product Security Advisories

            VMware Security Advisory

            Bluecoat Security Advisory

            • SA148: Linux Kernel Vulnerabilities Feb-Apr 2017
              This Security Advisory addresses multiple vulnerabilities in the Linux kernel.  Symantec Network Protection products, which include vulnerable versions of the Linux kernel and use the affected functionality, are vulnerable.
              - 1 May 17, 4:39pm -
            • SA147: March 2017 NTP Security Vulnerabilities
              This Security Advisory addresses multiple vulnerabilities in the ntp.org NTP reference implementation announced in March 2017.  Blue Coat products that include a vulnerable version of the NTP reference implementation and make use of the affected fun…
              - 10 Apr 17, 7:26pm -

            Apple Security Announcement

              More Security Advisories