Security News > 2020 > July

Offensive Security has acquired open source security training resource hub VulnHub. "As part of Offensive Security's ongoing commitment to community projects, we are excited to add VulnHub to the OffSec family," said Ning Wang, CEO, Offensive Security.

announced that Global Knowledge has been added as an Official Training Provider for the UK, further expanding the range of leading training organizations offering² certification preparation training in one of the world's biggest markets for IT security professionals. Global Knowledge will be providing exam preparation training for the full range of² certifications to its UK customer base, delivering pathways to new sectors and audiences, increasing the size of the UK channel presence for2 and responding to increased demand and a growing supply shortage of certified professionals in the workforce.

Qualys has acquired the software assets of Spell Security, an endpoint detection and response start-up. "The entire Spell Security team and I are thrilled to be part of such a pioneering and innovative cybersecurity company. Qualys' approach to delivering a unified cloud platform with all the information needed for protection, detection and response at your fingertips is well ahead of anything we've seen. This groundbreaking approach allows expert Threat Hunters, who are in great demand, to respond more effectively to the most sophisticated attacks. Thus, drastically reducing the time to respond," said Rajesh Mony, founder and CTO of Spell Security.

Critical flaws in Adobe's Magento e-commerce platform - which is commonly targeted by attackers like the Magecart cybergang - could enable arbitrary code execution on affected systems. Adobe on Tuesday released security updates for flaws affecting Magento Commerce 2 and Magento Open Source 2, versions 2.3.5-p1 and earlier.

Microsoft is preparing to once and for all drop support for the SHA-1 hash algorithm. "To support evolving industry security standards, and continue to keep you protected and productive, Microsoft will retire content that is Windows-signed for Secure Hash Algorithm 1 from the Microsoft Download Center on August 3, 2020," Microsoft said in a tech bulletin.

According to Eclypsium researchers, the bug tracked as CVE-2020-10713 could allow attackers to get around these protections and execute arbitrary code during the boot-up process, even when Secure Boot is enabled and properly performing signature verification. "During the parser stage, the configuration values are copied to internal buffers stored in memory. Configuration tokens that are longer in length than the internal buffer size end up leading to a buffer overflow issue. An attacker may leverage this flaw to execute arbitrary code, further hijacking the machine's boot process and bypassing Secure Boot protection. Consequently, it is possible for unsigned binary code to be loaded, further jeopardizing the integrity of the system."

McCoy's work in probing the credit card systems used by some of the world's biggest purveyors of junk email greatly enriched the data that informed my 2014 book Spam Nation, and I wanted to make sure he and his colleagues had a crack at the BriansClub data as well. In 2015, the major credit card associations instituted new rules that made it riskier and potentially more expensive for U.S. merchants to continue allowing customers to swipe the stripe instead of dip the chip.

Britain on Wednesday named its former ambassador to Turkey as the new director of the MI6 Secret Intelligence Service. Richard Moore succeeds Alex Younger, who was a career intelligence officer and became Britain's top spy in 2014.

Remote code-execution vulnerabilities in virtual private network products could impact the physical functioning of critical infrastructure in the oil and gas, water and electric utilities space, according to researchers. Researchers at Claroty found that VPNs used to provide remote access to operational technology networks in industrial systems are vulnerable to an array of security bugs, which could give an attacker direct access to field devices and cause physical damage or shut-downs.

Billions of Windows and Linux devices are affected by a serious GRUB2 bootloader vulnerability that can be exploited to install persistent and stealthy malware, firmware security company Eclypsium revealed on Wednesday. The vulnerability, tracked as CVE-2020-10713 and dubbed BootHole, has a CVSS score of 8.2 and Eclypsium says it affects all operating systems that use GRUB2 with Secure Boot, a mechanism designed to protect the boot process from attacks.