Critical Infrastructure

SecList ICS

• Managed Detection and Response analytics report, H1 2019
• Threat landscape for smart buildings

Security Magazine

• Instituting Security in IoT Networks to Prepare for Massive 5G Rollouts
• Two Teens Jump Fence at Nuclear Reactor Facility
• Stepping Up Security for Transit Riders
• Product Spotlight: GSOC Products and Solutions
• Cybersecurity for Critical Infrastructure
• How to Meet the Growing Demand for Cybersecurity Professionals

• Study Unveils 2020 Travel Risks & Country Medical/Safety Ratings
• Josh Ball: Prioritizing Partnerships
• Global Health Security Index Finds Gaps in Preparedness for Epidemics and Pandemics
• TSA Announces New Members of Aviation Security Advisory Committee
• Are Business Travelers Satisfied with U.S. Airports?
• Logan Airport Offers ‘Ticket' to Skip Security Line If Passengers Travel There by Ferry or Water Taxi

• Study Shows Hours When Security Officers are Most Often Attacked
• The 2019 Security 500 Rankings
• Global Health Security Index Finds Gaps in Preparedness for Epidemics and Pandemics
• Video Monitoring in the Sights of Guard Companies and Their Clients
• China’s Subway System Experiments with Facial Recognition for Payments
• Cincinnati Metro Introduces New Buses with Surveillance Cameras

Case Studies

• Safeguarding Security and Loss Prevention at Gap Inc.
• When Physical Intrusions Lead to Digital Breaches
• How Unified Device Management Is Critical to BYOD Enterprises
• Security Implications of the Electric Smart Grid
• Automating Security Incident Respons
• Defense in Depth: A Layered Approach to Network Security

• Collecting Insights and Metrics with Guard Tour Software
• Florida-based Company Protects Government Buildings with Window Film
• Simplify Connected Campus Security
• George Mason University: Migrating to Smart “One Card” Student ID
• NOVA Upgrades to Networked Power
• New Aloft Dubai Hotel Implements Advanced Surveillance System for Guest Protection

News

• Arron Banks' Twitter Account Hacked
• FBI Sought Interpol Statement Against End To End Crypto
• Macys.com Magecart Attack Yields Payment, Personal Info
• Android Flaw Lets Rogue Apps Take Photos, Record Video Even If Your Phone Is Locked
• Phineas Fisher Offers $100,000 Bounty To Hack Banks And Oil Companies
• Google Patches Awesome XSS Vulnerability In Gmail Dynamic Email Feature
• Attackers Using WhatsApp MP4 Vuln Can Remotely Execute Code
• Read Tim Morrison's NSC Impeachment Testimony
• Microsoft Taps Eric Holder To Audit AnyVision Face Recognition
• Design Flaw Leaves Bluetooth Devices Vulnerable
• Thousands Of Hacked Disney+ Accounts Are Already For Sale
• DDoS Kingpin Gets 13 Months, Massive Fine
• US Charges Men With Cryptocurrency Theft, SIM-Swapping Attacks
• What The Checkra1n Jailbreak Means For iDevice Security
• Open Database Exposes 93M Files On Substance Abuse Patients
• The Myth Of The Sophisticated Hacker
• Breach Affecting 1 Million Was Caught Only After Hacker Maxed Out Target's Storage
• Cryptoqueen Brother Admits Role In OneCoin Fraud
• Threat Actor Impersonates USPS To Deliver Backdoor Malware
• This App Will Tell You If Your iPhone Gets Hacked
• This Bank Had The Worst Password Policy We've Ever Seen
• Iranian Hacking Group Built Its Own VPN Network
• Malware Attacks On Hospitals Are Rising Fast
• Russian Charged With Running $20 Million Card Fraud Scheme
• US Violated Constitution By Searching Phones For No Good Reason

Exploits

• Windows Escalate UAC Protection Bypass Via Dot Net Profiler
• scadaApp For iOS 1.1.4.0 Denial Of Service
• Centova Cast 3.2.12 Denial Of Service
• Studio 5000 Logix Designer 30.01.00 Unquoted Service Path
• XMedia Recode 3.4.8.6 Denial Of Service
• Microsoft Windows 7 (x86) BlueKeep RDP Use-After-Free
• BartVPN 1.2.2 Unquoted Service Path
• Windows Escalate UAC Protection Bypass
• Centova Cast 3.2.11 Arbitrary File Download
• MobileGo 8.5.0 Insecure File Permissions
• nipper-ng 0.11.10 Remote Buffer Overflow
• TemaTres 3.0 Cross Site Scripting
• Foscam Video Management System 1.1.4.9 Denial Of Service
• TemaTres 3.0 Cross Site Request Forgery
• Crystal Live HTTP Server 6.01 Directory Traversal
• Open Proficy HMI-SCADA 5.0.0.25920 Denial Of Service
• Lexmark Services Monitor 2.27.4.0.39 Directory Traversal
• ASUS HM Com Service 1.00.31 Unquoted Service Path
• Emerson PAC Machine Edition 9.70 Build 8595 Unquoted Service Path
• NCP_Secure_Entry_Client 9.2 Unquoted Service Path
• iSmartViewPro 1.3.34 Denial Of Service
• FreeRadius 3.0.19 Logrotate Privilege Escalation
• Raritan CommandCenter Secure Gateway Cross Site Scripting
• TP-Link Archer VR300 1 Cross Site Scripting
• WordPress Social Photo Gallery 1.0 Remote Code Execution

• [remote] nipper-ng 0.11.10 - Remote Buffer Overflow (PoC)
• [webapps] TemaTres 3.0 - 'value' Persistent Cross-site Scripting
• [dos] Foscam Video Management System 1.1.4.9 - 'Username' Denial of Service (PoC)
• [webapps] TemaTres 3.0 - Cross-Site Request Forgery (Add Admin)
• [webapps] Centova Cast 3.2.11 - Arbitrary File Download
• [local] NCP_Secure_Entry_Client 9.2 - Unquoted Service Paths
• [local] MobileGo 8.5.0 - Insecure File Permissions
• [webapps] Crystal Live HTTP Server 6.01 - Directory Traversal
• [dos] Open Proficy HMI-SCADA 5.0.0.25920 - 'Password' Denial of Service (PoC)
• [local] ASUS HM Com Service 1.00.31 - 'asHMComSvc' Unquoted Service Path
• [webapps] Lexmark Services Monitor 2.27.4.0.39 - Directory Traversal
• [dos] iSmartViewPro 1.3.34 - Denial of Service (PoC)
• [local] Emerson PAC Machine Edition 9.70 Build 8595 - 'FxControlRuntime' Unquoted Service Path
• [local] Shrew Soft VPN Client 2.2.2 - 'iked' Unquoted Service Path
• [webapps] Xfilesharing 2.5.1 - Arbitrary File Upload
• [local] oXygen XML Editor 21.1.1 - XML External Entity Injection
• [dos] Siemens Desigo PX 6.00 - Denial of Service (PoC)
• [local] ScanGuard Antivirus 2020 - Insecure Folder Permissions
• [webapps] Fastweb Fastgate 0.00.81 - Remote Code Execution
• [webapps] gSOAP 2.8 - Directory Traversal
• [webapps] Technicolor TC7300.B0 - 'hostname' Persistent Cross-Site Scripting
• [webapps] Technicolor TD5130.2 - Remote Command Execution
• [webapps] FUDForum 3.0.9 - Remote Code Execution
• [webapps] Linear eMerge E3 1.00-06 - Remote Code Execution
• [webapps] Bematech Printer MP-4200 - Denial of Service
• [local] Wondershare Application Framework Service - "WsAppService" Unquote Service Path
• [local] Control Center PRO 6.2.9 - Local Stack Based Buffer Overflow (SEH)
• [webapps] FlexAir Access Control 2.3.35 - Authentication Bypass
• [webapps] Adrenalin Core HCM 5.4.0 - 'ReportID' Reflected Cross-Site Scripting
• [local] RTK IIS Codec Service 6.4.10041.133 - 'RtkI2SCodec' Unquote Service Path
• [webapps] Optergy 2.3.0a - Remote Code Execution (Backdoor)
• [webapps] Optergy 2.3.0a - Username Disclosure
• [webapps] Optergy 2.3.0a - Cross-Site Request Forgery (Add Admin)
• [webapps] FlexAir Access Control 2.4.9api3 - Remote Code Execution
• [local] Alps Pointing-device Controller 8.1202.1711.04 - 'ApHidMonitorService' Unquoted Service Path
• [webapps] Optergy 2.3.0a - Remote Code Execution
• [webapps] Atlassian Confluence 6.15.1 - Directory Traversal (Metasploit)
• [webapps] Prima Access Control 2.3.35 - Arbitrary File Upload
• [webapps] Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting
• [webapps] Joomla 3.9.13 - 'Host' Header Injection
• [webapps] CBAS-Web 19.0.0 - 'id' Boolean-based Blind SQL Injection
• [webapps] CBAS-Web 19.0.0 - Username Enumeration
• [remote] CBAS-Web 19.0.0 - Information Disclosure
• [webapps] CBAS-Web 19.0.0 - Cross-Site Request Forgery (Add Super Admin)
• [webapps] CBAS-Web 19.0.0 - Remote Code Execution
• [remote] eMerge E3 Access Controller 4.6.07 - Remote Code Execution (Metasploit)

Last 20 Website Defacements - Zone-h

• http://www.sidalocal.go.th/kurd.html
• http://noticiaspoliciales.gob.ar/zx.htm
• https://pjec.gob.mx/X-m3n.html
• http://www.gon.gov.mz/kurd.html
• http://www.arpac.gov.mz/README.txt
• http://ds9.ssl.berkeley.edu/wise/
• http://wise.ssl.berkeley.edu
• http://ds9dnn.ssl.berkeley.edu
• http://baotanglichsu.thuathienhue.gov.vn/Relaz.html
• http://bthcm.thuathienhue.gov.vn/Relaz.html
• http://btxh.gov.vn//Relaz.html
• http://www.ngzcopo.gov.et/images/0x1998.txt
• http://www.whaz.gov.et/images/0x1998.txt
• http://mufti.terengganu.gov.my/images/0x1998.txt
• http://volcan.muniacatenango.gob.gt/images/0x1998.txt
• https://bakruea.go.th/images/0x1998.txt
• https://www.inahina.gov.mz/images/0x1998.txt
• http://sealifebase01.fisheries.ubc.ca
• http://kpu-karawang.go.id/readme.html
• http://pn-polewali.go.id/heked.html

Advisories

• Debian Security Advisory 4573-1 Tue, 19 Nov 2019 15:26:09 GMT
  Debian Linux Security Advisory 4573-1 - Multiple vulnerabilities have been found in the Symfony PHP framework which could lead to a timing attack/information leak, argument injection and code execution via unserialization.
• Red Hat Security Advisory 2019-3908-01 Tue, 19 Nov 2019 15:24:53 GMT
  Red Hat Security Advisory 2019-3908-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. An issue where Intel GPU blitter manipulation can allow for arbitrary kernel memory write was addressed.
• Debian Security Advisory 4572-1 Tue, 19 Nov 2019 15:19:43 GMT
  Debian Linux Security Advisory 4572-1 - It was discovered in the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system did not escape strings when importing an archive file into the accounting_storage/mysql backend, resulting in SQL injection.
• Red Hat Security Advisory 2019-3906-01 Tue, 19 Nov 2019 15:17:09 GMT
  Red Hat Security Advisory 2019-3906-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Go has been updated to address unbounded memory growth issues.
• Red Hat Security Advisory 2019-3905-01 Tue, 19 Nov 2019 15:14:49 GMT
  Red Hat Security Advisory 2019-3905-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the atomic-openshift RPM package for Red Hat OpenShift Container Platform 3.11.154. Issues addressed include a denial of service vulnerability.
• Ubuntu Security Notice USN-4196-1 Mon, 18 Nov 2019 15:30:43 GMT
  Ubuntu Security Notice 4196-1 - It was discovered that python-ecdsa incorrectly handled certain signatures. A remote attacker could possibly use this issue to cause python-ecdsa to generate unexpected exceptions, resulting in a denial of service. It was discovered that python-ecdsa incorrectly verified DER encoding in signatures. A remote attacker could use this issue to perform certain malleability attacks. Various other issues were also addressed.
• Debian Security Advisory 4571-1 Mon, 18 Nov 2019 15:28:57 GMT
  Debian Linux Security Advisory 4571-1 - Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code or denial of service.
• Red Hat Security Advisory 2019-3901-01 Mon, 18 Nov 2019 15:27:40 GMT
  Red Hat Security Advisory 2019-3901-01 - Red Hat OpenShift Application Runtimes provide an application platform that reduces the complexity of developing and operating applications for OpenShift as a containerized platform. This release of RHOAR Vert.x 3.8.3 includes security updates, bug fixes, and enhancements. For more information, see the release notes linked to in the References section. Issues addressed include code execution and deserialization vulnerabilities.
• Ubuntu Security Notice USN-4195-1 Mon, 18 Nov 2019 15:27:19 GMT
  Ubuntu Security Notice 4195-1 - Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.18 in Ubuntu 19.10. Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.04 have been updated to MySQL 5.7.28. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Various other issues were also addressed.
• Debian Security Advisory 4570-1 Mon, 18 Nov 2019 15:25:36 GMT
  Debian Linux Security Advisory 4570-1 - A vulnerability was discovered in mosquitto, a MQTT version 3.1/3.1.1 compatible message broker, allowing a malicious MQTT client to cause a denial of service (stack overflow and daemon crash), by sending a specially crafted SUBSCRIBE packet containing a topic with a extremely deep hierarchy.
• Red Hat Security Advisory 2019-3898-01 Mon, 18 Nov 2019 15:23:27 GMT
  Red Hat Security Advisory 2019-3898-01 - Libcomps is library for structure-like manipulation with content of comps XML files. Supports read/write XML file, structure modification. A use-after-free vulnerability was addressed.
• Slackware Security Advisory - Slackware 14.2 kernel Updates Mon, 18 Nov 2019 15:22:09 GMT
  Slackware Security Advisory - New kernel packages are available for Slackware 14.2 to fix security issues.
• Debian Security Advisory 4569-1 Mon, 18 Nov 2019 15:12:56 GMT
  Debian Linux Security Advisory 4569-1 - Manfred Paul and Lukas Schauer reported that the .charkeys procedure in Ghostscript, the GPL PostScript/PDF interpreter, does not properly restrict privileged calls, which could result in bypass of file system restrictions of the dSAFER sandbox.
• Red Hat Security Advisory 2019-3895-01 Mon, 18 Nov 2019 15:10:33 GMT
  Red Hat Security Advisory 2019-3895-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. A privilege escalation vulnerability was addressed.
• Debian Security Advisory 4568-1 Mon, 18 Nov 2019 15:08:07 GMT
  Debian Linux Security Advisory 4568-1 - Rich Mirch discovered that the pg_ctlcluster script didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation.
• Raritan CommandCenter Secure Gateway XML Injection Fri, 15 Nov 2019 21:32:42 GMT
  Raritan CommandCenter Secure Gateway versions prior to 8.0.0 suffer from an XML external entity injection vulnerability. A remote unauthenticated attacker may lead to the disclosure of confidential data, denial of service, server side request forgery, port scanning from the perspective of the machine where the parser is located, and other system impacts by using this vulnerability.
• Centraleyezer Shell Upload Fri, 15 Nov 2019 21:24:09 GMT
  Centraleyezer suffers from a remote shell upload vulnerability.
• Red Hat Security Advisory 2019-3892-01 Fri, 15 Nov 2019 16:16:10 GMT
  Red Hat Security Advisory 2019-3892-01 - This release of Red Hat Fuse 7.5.0 serves as a replacement for Red Hat Fuse 7.4, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution, denial of service, deserialization, information leakage, and traversal vulnerabilities.
• Ubuntu Security Notice USN-4194-1 Fri, 15 Nov 2019 16:16:01 GMT
  Ubuntu Security Notice 4194-1 - Rich Mirch discovered that the postgresql-common pg_ctlcluster script incorrectly handled directory creation. A local attacker could possibly use this issue to escalate privileges.
• Red Hat Security Advisory 2019-3890-01 Fri, 15 Nov 2019 16:15:39 GMT
  Red Hat Security Advisory 2019-3890-01 - The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed.
• Ubuntu Security Notice USN-4193-1 Fri, 15 Nov 2019 16:15:19 GMT
  Ubuntu Security Notice 4193-1 - Paul Manfred and Lukas Schauer discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause a denial of service.
• Red Hat Security Advisory 2019-3888-01 Fri, 15 Nov 2019 16:15:03 GMT
  Red Hat Security Advisory 2019-3888-01 - The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed.
• Red Hat Security Advisory 2019-3889-01 Fri, 15 Nov 2019 16:14:26 GMT
  Red Hat Security Advisory 2019-3889-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. An arbitrary kernel memory write vulnerability was addressed.
• Red Hat Security Advisory 2019-3887-01 Fri, 15 Nov 2019 16:13:27 GMT
  Red Hat Security Advisory 2019-3887-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. An arbitrary kernel memory write vulnerability was addressed.
• Ubuntu Security Notice USN-4192-1 Thu, 14 Nov 2019 15:57:14 GMT
  Ubuntu Security Notice 4192-1 - It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program.