433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (727) 493-2351

Chrome’s Download Tab: Dangerous Files, (Sun, Apr 9th)

When Johannes mentioned on the Stormcast that 3CX's trojanized installer was blocked by Google Chrome, I remembed a feature I don't often use.
http://news.poseidon-us.com/SmCfYH

Week in review: Western Digital network security incident, QNAP vulns, Patch Tuesday forecast

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Passbolt: Open-source password manager for security-conscious organizations In this Help Net Security interview, Kevin Muller, CEO at Passbolt, delves into the critical concerns linked to password usage, outlines how the Passbolt password manager guarantees the utmost level of security for businesses, highlights its features in the competitive landscape, sheds light on how Passbolt meets the distinct requirements of teams and … More → The post Week in review: Western Digital network security incident, QNAP vulns, Patch Tuesday forecast appeared first on Help Net Security.
http://news.poseidon-us.com/SmCXqg

Microsoft Netlogon: Potential Upcoming Impacts of CVE-2022-38023, (Sat, Apr 8th)

This has been brought to our attention by a reader (thank you, William!). The vulnerability %%cve:2022-38038%% affected the Microsoft Netlogon[1] procedure with an RPC escalation of privilege vulnerability. Microsoft provided a patch to fix it. It improves the Netlogon security by enforcing RPC sealing instead of signing off the communication with the Domain Controller. RPC sealing is a security measure that both signs and encrypts the messages sent over the wire by the Netlogon protocol. Microsoft released a knowledge base article[2] with more information about the technique used to fix the vulnerability.
http://news.poseidon-us.com/Sm9NDg

Samsung employees leaked corporate data in ChatGPT: report

Data privacy is a concern for companies with employees using ChatGPT’s web-based interface, as input data is used to train and improve the tool.
http://news.poseidon-us.com/Sm8GVK

Rilide browser extension steals MFA codes

Cryptocurrency thieves are targeting users of Chromium-based browsers – Google Chrome, Microsoft Edge, Brave Browser, and Opera – with an extension that steals credentials and can grab multi-factor authentication (MFA) codes. The malicious extension Dubbed Rilide by Trustwave researchers, the extension mimics the legitimate Google Drive extension while, in the background, it disables the Content Security Policy (CSP), collects system information, exfiltrates browsing history, takes screenshots, and injects malicious scripts. It aims to allow attackers … More → The post Rilide browser extension steals MFA codes appeared first on Help Net Security.
http://news.poseidon-us.com/Sm7c0z

Companies carry unquantified levels of risk due to current network security approaches

40% of senior cybersecurity decision makers effectively prioritize risks to Payment Card Industry Data Security Standard (PCI DSS) 4.0 compliance, according to Titania. The study highlights that oil and gas, telecommunications, and banking and financial services organizations are prime targets for threat actors that exploit vulnerable network device configurations to scale their attacks. It also reveals only 37% could ‘very effectively’ categorize and prioritize compliance risks that undermine the security of their networks. Network misconfigurations … More → The post Companies carry unquantified levels of risk due to current network security approaches appeared first on Help Net Security.
http://news.poseidon-us.com/Sm6Yz8

ISC Stormcast For Friday, April 7th, 2023 https://isc.sans.edu/podcastdetail.html?id=8444, (Fri, Apr 7th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/Sm6Wtk