On October 2, 2019, the UK’s National Cyber Security Centre (NCSC) released a notice stating that Pulse Secure, Palo Alto, and Fortinet’s SSL VPN solutions are vulnerable. These vulnerabilities consist of retrieving arbitrary files, some including authentication credentials, as well as post-auth command injection. Unauthorized access into any network is a huge alarm and could … [Read more...]
Java DDoS Botnet – WSWiR Episode 93
Cross-Platform Bots, Deceitful Ransomware, and Oracle Exploits Ok... I know all your minds are already on this weekend's upcoming Super Bowl, and if you're anything like my Seattle-based office, you've got that Seahawk 12ᵗʰ man spirit going on. But, before running off to your tailgate party, why not take a few minutes to catch up on this week's information security news with … [Read more...]
Sniffin' Android VPN – WSWiR Episode 92
Energetic Bear APTs, Bugged Browsers, and Trojaned Extension Another week, another pile of scary sounding security stories. But don't freak out... If you know how to protect yourself, you can easily avoid most of these vulnerabilities and issues. Enjoy another episode of WatchGuard Security Week in Review for a quick recap of the Infosec news from the week, and what to do about … [Read more...]
Adobe Data Breach – WSWiR Episode 79
IE Exploit, Silk Road Ruined, and NSA Tor Hacks Better late than never. This week's regular Friday InfoSec video includes the latest on the Internet Explorer (IE) vulnerability, a warning to Adobe customers about a data breach, news of a popular Tor site takedown, and the latest NSA and Snowden leak. Watch the video below for details, and check out the Reference section for … [Read more...]
