Talk With an Expert

Internet Storm Center Tech Corner

Hurricane Helene Aftermath - Cyber Security Awareness Month

https://isc.sans.edu/diary/Hurricane+Helene+Aftermath+Cyber+Security+Awareness+Month/31314

Security Related Docker Containers

https://isc.sans.edu/diary/Security%20related%20Docker%20containers/31318

Kickstart Your DShield Honeypot

https://isc.sans.edu/diary/Kickstart+Your+DShield+Honeypot+Guest+Diary/31320

SANS Munich (free Community Night Tuesday October 15th)

https://www.sans.org/cyber-security-training-events/munich-october-2024/

CreanaKeeper Use of Cloud Services

https://www.welivesecurity.com/en/eset-research/separating-bee-panda-ceranakeeper-making-beeline-thailand/

Optigo Spectra Vulnerabilities

https://claroty.com/team82/disclosure-dashboard/cve-2024-41925

https://claroty.com/team82/disclosure-dashboard/cve-2024-45367

Pixel Addressing Vulnerabilities in Cellular Modems

https://security.googleblog.com/2024/10/pixel-proactive-security-cellular-modems.html

CUPS DDoS Attack

https://www.akamai.com/blog/security-research/october-cups-ddos-threat

Draytek Vulnerabilities

https://www.forescout.com/resources/draybreak-draytek-research/

Zimbra - Remote Command Execution (CVE-2024-45519)

https://blog.projectdiscovery.io/zimbra-remote-code-execution/

Enhancing the security of Microsoft Edge extensions with the new Publish API

https://blogs.windows.com/msedgedev/2024/09/30/enhanced-security-for-extensions-with-new-publish-api/

CVE-2024-36435 Deep-Dive: The Year's Most Critical BMC Security Flaw

https://www.binarly.io/blog/cve-2024-36435-deep-dive-the-years-most-critical-bmc-security-flaw

View Older Issues

Catch up on recent editions of NewsBites or browse our full archive of expert-curated cybersecurity news.

Browse Archive