Taking over Azure DevOps Accounts with 1 Click Security News & Discussion

---

• Taking over Azure DevOps Accounts with 1 Click
• DisplayLink USB Graphics Software arbitrary file write Elevation of Privilege
• How hackers extorted $1.14m from a US university
• Progress Tracker - Burp Suite extension to track vulnerability assessment progress.
• System hardening in Android 11
• IDA plugin for UEFI firmware analysis and reverse engineering automation
• TuxGuitar - analysis of discovered XXE (CVE-2020-14940)
• A proposed new HTML element: Portals
• CVE-2020-2021: Palo Alto Networks PAN-OS Vulnerable to Critical Authentication Bypass Vulnerability
• Slack RCE: Low user-assist (patched)
• Cellebrite Good Times, Come On: Reverse-Engineering Phone Forensics Tools
• MacOS Privacy Control - 0day allowing access to private data by any installed application - Apple has known since December.
• CVE-2020–2033 Palo Alto Global Protect Remote Session Hijack

Taking over Azure DevOps Accounts with 1 Click Posted: 01 Jul 2020 05:42 AM PDT submitted by /u/Mempodipper [link] [comments]

DisplayLink USB Graphics Software arbitrary file write Elevation of Privilege Posted: 01 Jul 2020 06:03 AM PDT submitted by /u/AlmondOffSec [link] [comments]

How hackers extorted $1.14m from a US university Posted: 01 Jul 2020 01:18 PM PDT submitted by /u/ubershmekel [link] [comments]

Progress Tracker - Burp Suite extension to track vulnerability assessment progress. Posted: 01 Jul 2020 09:19 AM PDT submitted by /u/luffbj [link] [comments]

System hardening in Android 11 Posted: 01 Jul 2020 12:28 AM PDT submitted by /u/pimterry [link] [comments]

IDA plugin for UEFI firmware analysis and reverse engineering automation Posted: 01 Jul 2020 02:04 PM PDT submitted by /u/yeggor [link] [comments]

TuxGuitar - analysis of discovered XXE (CVE-2020-14940) Posted: 30 Jun 2020 11:41 PM PDT submitted by /u/logicaltrust-net [link] [comments]

A proposed new HTML element: Portals Posted: 01 Jul 2020 02:37 AM PDT submitted by /u/LivingPublic [link] [comments]

CVE-2020-2021: Palo Alto Networks PAN-OS Vulnerable to Critical Authentication Bypass Vulnerability Posted: 30 Jun 2020 08:09 PM PDT submitted by /u/LowEnergyUsername [link] [comments]

Slack RCE: Low user-assist (patched) Posted: 01 Jul 2020 12:13 AM PDT submitted by /u/endless [link] [comments]

Cellebrite Good Times, Come On: Reverse-Engineering Phone Forensics Tools Posted: 30 Jun 2020 12:25 PM PDT submitted by /u/mbkore [link] [comments]

MacOS Privacy Control - 0day allowing access to private data by any installed application - Apple has known since December. Posted: 30 Jun 2020 06:56 AM PDT submitted by /u/WM-M-GM [link] [comments]

CVE-2020–2033 Palo Alto Global Protect Remote Session Hijack Posted: 30 Jun 2020 09:18 AM PDT submitted by /u/rogue_kdc [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States