CISO Express | A Security Professional’s Home Page

Microsoft Security Advisory

Microsoft Security Response Center

  • BlueHat Seattle 2019 Call for Papers is Now Open!
    2019 has seen a phenomenal BlueHatIL in February followed by a wildly successful BlueHat Shanghai in May… now it’s time to come back home for BlueHat Seattle!  2 days of hands-on technical training (October 22-23, 2019)  2 days of conference ta…
    - 3 Sep 19, 11:01pm -
  • Acquiring a VHD to Investigate
    In a previous post we described some of the differences between on-premises/physical forensics and cyber investigations and those performed in the cloud, and how this can make cloud forensics challenging. That blog post described a method of creating…
    - 3 Sep 19, 7:30pm -

Zero Day Initiative Upcoming Advisories

  • ZDI-CAN-5875: Wecon

    ZDI-CAN-5875: Wecon

    A CVSS score 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C) severity vulnerability discovered by 'nsfocus security team.' was reported to the affected vendor on: 2018-03-09, 0 days ago. The vendor is given until 2018-07-07 to publish a fix or workaround. Once the…
    - 9 Mar 18, 12:00pm -
  • ZDI-CAN-5863: Wecon

    ZDI-CAN-5863: Wecon

    A CVSS score 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C) severity vulnerability discovered by 'Mat Powell - Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2018-03-09, 0 days ago. The vendor is given until 2018-07-07 to publish a fix or…
    - 9 Mar 18, 12:00pm -

US-CERT Alerts

  • newAA21-265A: Conti Ransomware
    Original release date: September 22, 2021SummaryImmediate Actions You Can Take Now to Protect Against Conti Ransomware• Use multi-factor authentication.• Segment and segregate networks and functions.• Update your operating system and softwar…
    - 15 hours ago 22 Sep 21, 5:00pm -
  • AA21-259A: APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus
    Original release date: September 16, 2021SummaryThis Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 8. See the ATT&CK for Enterprise for  referenced threat actor tactic…
    - 7 days ago 16 Sep 21, 5:00pm -

US-CERT Bulletin

  • Vulnerability Summary for the Week of September 13, 2021
    Original release date: September 20, 2021 High VulnerabilitiesPrimaryVendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infozohocorp -- manageengine_adselfservice_plusZoho ManageEngine A…
    - 3 days ago 20 Sep 21, 10:58am -
  • Vulnerability Summary for the Week of September 6, 2021
    Original release date: September 13, 2021 High VulnerabilitiesPrimaryVendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoadaptivescale -- lxduiA Hardcoded JWT Secret Key in metadata.p…
    - 10 days ago 13 Sep 21, 10:54am -

US-CERT Activity

  • newCISA, FBI, and NSA Release Joint Cybersecurity Advisory on Conti Ransomware 
    Original release date: September 22, 2021CISA, the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (CSA) alerting organizations of increased Conti ransomware attacks. Maliciou…
    - 15 hours ago 22 Sep 21, 5:00pm -
  • newGoogle Releases Security Updates for Chrome
    Original release date: September 22, 2021Google has released Chrome version 94.0.4606.54  for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.CISA encourages user…
    - 16 hours ago 22 Sep 21, 3:36pm -

Joomla Security Advisory

  • [20210402] - Core - Inadequate filters on module layout settings

    [20210402] - Core - Inadequate filters on module layout settings

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.0.0 - 3.9.25Exploit type: LFIReported Date: 2021-01-03Fixed Date: 2021-04-13CVE Number: CVE-2021-26031DescriptionInadequate filters on module layout settings could lead…
    - 13 Apr 21, 3:00pm -
  • [20210401] - Core - Escape xss in logo parameter error pages

    [20210401] - Core - Escape xss in logo parameter error pages

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.0.0 - 3.9.25Exploit type: XSSReported Date: 2021-03-09Fixed Date: 2021-04-13CVE Number: CVE-2021-26030DescriptionInadequate escaping allowed XSS attacks using the logo p…
    - 13 Apr 21, 3:00pm -

Wordpress Advisory

Adobe Security Advisory

  • Security Bulletins Posted
    Adobe has published security bulletins for Magento (APSB21-08), Adobe Acrobat and Reader (APSB21-09), Adobe Photoshop (APSB21-10), Adobe Animate (APSB21-11), Adobe Illustrator (APSB21-12) and Adobe Dreamweaver (APSB21-13).  Adobe recommends users up…
    - 9 Feb 21, 9:57am -
  • Upcoming Security Updates for Adobe Acrobat and Reader (APSB21-09)
    A prenotification security advisory (APSB21-09) has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for the week of February 09, 2021. We will continue to provide updates on the upcoming release via the Security Bulletins an…
    - 4 Feb 21, 7:16am -

Oracle Security Advisory

Linux Security Advisory

ICS-CERT Advisory

    Cisco Security Advisory

      Cisco Security Response

        Cisco IPS Threat Defense Bulletins

          IBM Security Advisory by IBM PSIRT

          AWS Security Advisory by Amazon

          • runC Security Issue (CVE-2021-30465)
            [V2] Last Updated: 2021/06/16 1:20 PM PDTThis is an update for this issue. Binaries of AWS IoT Greengrass Core V1 (1.10.4 and 1.11.3) with patched runC are now available for download (https://docs.aws.amazon.com/greengrass/v1/developerguide/what-is-…
            - 99 days ago 16 Jun 21, 7:34pm -
          • Xen Security Advisories (XSA-372, 373, 374, 375, and 377)
            Initial Publication Date: 2021/06/08 3:30 PM PDT The Xen Security Team has released Xen Security Advisories 372, 373, 374, 375, and 377 regarding the Xen hypervisor. AWS customers’ data and instances are not affected by this issue, and no customer…
            - 8 Jun 21, 10:35pm -

          Google Chrome Security Advisory

          • Chrome for Android Update

            Chrome for Android Update

            Hi, everyone! We've just released Chrome 94 (94.0.4606.50) for Android: it'll become available on Google Play over the next few days.This release includes stability and performance improvements. You can see a full list of the changes in the Git lo…
            - 1 day ago 21 Sep 21, 7:57pm -
          • Stable Channel Update for Desktop

            Stable Channel Update for Desktop

            The Chrome team is delighted to announce the promotion of Chrome 94 to the stable channel for Windows, Mac and Linux.Chrome 94 is also promoted to our new extended stable channel for Windows and Mac. This will roll out over the coming days/weeks.Chr…
            - 2 days ago 21 Sep 21, 5:54pm -

          Symantec Product Security Advisories

            VMware Security Advisory

            • Intrinsic Security: Best Practices for Using Automation to Simplify and Improve Threat Protection

              Intrinsic Security: Best Practices for Using Automation to Simplify and Improve Threat Protection

                Cybercrime is up 600% during the COVID-19 pandemic as companies continue relying on employees working remotely. As the threat landscape evolves, security teams must remain agile in preventing and responding to an increasing volume of attacks. To s…
              - 1 Dec 20, 12:36am -
            • VMware and Tianfu Cup 2020
              Update November 08, 2020 Tianfu Cup International PWN Contest 2020 has been wrapped up with no attempts on our products on Day 2. We would like to thank Tianfu Cup organizers for making remote participation possible and continuing the contest.   Upd…
              - 6 Nov 20, 4:19pm -

            Bluecoat Security Advisory

            • SA148: Linux Kernel Vulnerabilities Feb-Apr 2017
              This Security Advisory addresses multiple vulnerabilities in the Linux kernel.  Symantec Network Protection products, which include vulnerable versions of the Linux kernel and use the affected functionality, are vulnerable.
              - 1 May 17, 4:39pm -
            • SA147: March 2017 NTP Security Vulnerabilities
              This Security Advisory addresses multiple vulnerabilities in the ntp.org NTP reference implementation announced in March 2017.  Blue Coat products that include a vulnerable version of the NTP reference implementation and make use of the affected fun…
              - 10 Apr 17, 7:26pm -

            Apple Security Announcement

              More Security Advisories