Talk With an Expert

Internet Storm Center Tech Corner

Cropping and Redacting Images Safely

https://isc.sans.edu/diary/Cropping+and+Redacting+Images+Safely/29666

Acropalypse Detection and Sanitization Tools

https://github.com/infobyte/CVE-2023-21036

Windows Snipping Tool Privacy Bug: Inspecting PNG Files

https://isc.sans.edu/diary/Windows+11+Snipping+Tool+Privacy+Bug+Inspecting+PNG+Files/29660

Windows 11 Snipping Tool Privacy Bug

https://www.bleepingcomputer.com/news/microsoft/windows-11-snipping-tool-privacy-bug-exposes-cropped-image-content/

String Obfuscation: Character Pair Reversal

https://isc.sans.edu/diary/String+Obfuscation+Character+Pair+Reversal/29654

Untitled Goose Tool

https://github.com/cisagov/untitledgoosetool

Veeam Vulnerability Details

https://www.horizon3.ai/veeam-backup-and-replication-cve-2023-27532-deep-dive/

Unicode Support in Python used to Evade Detection

https://blog.phylum.io/malicious-actors-use-unicode-support-in-python-to-evade-detection

WooCommerce Skimmer Reveals Tampered Gateway Plugin

https://blog.sucuri.net/2023/03/woocommerce-skimmer-reveals-tampered-gateway-plugin.html

Netgear Orbi Router Vulnerable

https://blog.talosintelligence.com/vulnerability-spotlight-netgear-orbi-router-vulnerable-to-arbitrary-command-execution/

Malicious .Net Packages

https://jfrog.com/blog/attackers-are-starting-to-target-net-developers-with-malicious-code-nuget-packages/

Spring Framework Vulnerability

https://spring.io/blog/2023/03/20/spring-framework-6-0-7-and-5-3-26-fix-cve-2023-20860-and-cve-2023-20861

Snappy Vulnerability

https://github.com/KnpLabs/snappy/security/advisories/GHSA-gq6w-q6wh-jggc

View Older Issues

Catch up on recent editions of NewsBites or browse our full archive of expert-curated cybersecurity news.

Browse Archive