Patch Tuesday Presentation Holes and Patches
OmerZia13
16 views
17 slides
Aug 30, 2024
Slide 1 of 17
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
About This Presentation
Patch Tuesday
Slide Content
Previous Previous
GnewsGnews
GnewsGnews
Do Not Poke It If It Is Not Yours
Do Not Brag About Questionable Activity
Do Not Hack The Venue
Not Legal Advice
Everything Is Theoretical
Use At Your Own Risk
Not Responsible For Damages
Mileage May Vary
Trust No One
Verify Everything
Do Your Own Research
Create Your Own Opinion
Communicate
Share
Learn
Enjoy
Do Not Brag About Questionable Activity
Do Not Hack The Venue
Not Legal Advice
Everything Is Theoretical
Use At Your Own Risk
Not Responsible For Damages
Mileage May Vary
Trust No One
Verify Everything
Do Your Own Research
Create Your Own Opinion
Communicate
Share
Learn
Enjoy
Mar – 65 CVE / 22 KB Articles
•Reports of 4-6 Critical, 1 actively exploited
• Adobe Flash Player
• Internet Explorer
• Microsoft Edge
• Microsoft Windows
• Microsoft Office and Microsoft Office SharePoint
• ChakraCore
• Team Foundation Server
• Skype for Business
• Visual Studio
• NuGet
•http/2 DoS bug
•SHA-1 Sigining
•Win10 build Stalled
•Azure Sentinel
Patch Tuesday
•Reports of 4-6 Critical, 1 actively exploited
• Adobe Flash Player
• Internet Explorer
• Microsoft Edge
• Microsoft Windows
• Microsoft Office and Microsoft Office SharePoint
• ChakraCore
• Team Foundation Server
• Skype for Business
• Visual Studio
• NuGet
•http/2 DoS bug
•SHA-1 Sigining
•Win10 build Stalled
•Azure Sentinel
Patch Tuesday
•Adobe
–APSB19-13 Acrobat and Reader, id ( 1 CVE )
–APSB19-14 Cold Fusion, rce ( 1 CVE )
–APSB19-15 Photshop CC, ce ( 1 CVE )
–APSB19-16 Digital Editions, ce ( 1 CVE )
•Cisco
–HyperFlex and Prime, auth bypass ( 4+ CVE )
–WebEx, pe ( 1 CVE )
–SoHo Routers RV series, ce ( 1 CVE )
–NX-OS / FXOS, ce ( 26 CVE )
•Juniper
–Multiple vulns for JunOS ( 4 CVE )
•VMWare
–VMSA-2019-0001.3, runc ( 1 CVE )
•Apple
–none
•Chrome
–Use After Free bug
Holes / Patches
–APSB19-13 Acrobat and Reader, id ( 1 CVE )
–APSB19-14 Cold Fusion, rce ( 1 CVE )
–APSB19-15 Photshop CC, ce ( 1 CVE )
–APSB19-16 Digital Editions, ce ( 1 CVE )
•Cisco
–HyperFlex and Prime, auth bypass ( 4+ CVE )
–WebEx, pe ( 1 CVE )
–SoHo Routers RV series, ce ( 1 CVE )
–NX-OS / FXOS, ce ( 26 CVE )
•Juniper
–Multiple vulns for JunOS ( 4 CVE )
•VMWare
–VMSA-2019-0001.3, runc ( 1 CVE )
•Apple
–none
•Chrome
–Use After Free bug
Holes / Patches
•Kali 2019.1
•6 yr old WP bug
•WinRAR bug
•Drupal
•Adobe reader re-patch
•WhatsApp message snooping bug (ios)
•NVIDIA patches
•Ring patches snooping flaw
•Comcast Xfinity secures all accounts with Kayne's password
•Gamer? don't update win 10
•Google bluetooth
Holes
•6 yr old WP bug
•WinRAR bug
•Drupal
•Adobe reader re-patch
•WhatsApp message snooping bug (ios)
•NVIDIA patches
•Ring patches snooping flaw
•Comcast Xfinity secures all accounts with Kayne's password
•Gamer? don't update win 10
•Google bluetooth
Holes
•8char
•ATM jackpotting
•Passwd Mgr crumbs in memory
•Responsible diclosure re-re-dux
•Delete xml.rels, Bypass lazy mail filters
•separ malware
•Big ship hacking, again....
•maxxaudio drivers
•AI woes
•pdf signing
•BMC cloud persistence bug
•thunderclap
•MarioNet
•header anomaly allows for detection of cobalt strike
•visitor kiosks
•side channel attack for DNA?
•car alarm hacking
Hacking
•ATM jackpotting
•Passwd Mgr crumbs in memory
•Responsible diclosure re-re-dux
•Delete xml.rels, Bypass lazy mail filters
•separ malware
•Big ship hacking, again....
•maxxaudio drivers
•AI woes
•pdf signing
•BMC cloud persistence bug
•thunderclap
•MarioNet
•header anomaly allows for detection of cobalt strike
•visitor kiosks
•side channel attack for DNA?
•car alarm hacking
Hacking
•Palo Alto Networks to buy Demisto(Sec Orchestration), $560m
•Exclusive Group to buy Secure Wave
•Popsico buys MuscleMilk
•Target buys Shipt
•nintex buys enable soft
•Apple to acquire Lighthouse AI patents
•NTT buys WhiteHat Security
•Okta to buy Azuqua (integration)
•F5 buys NGINX
•Amazon drops NY HQ2
•Google reports 3.4million paid in bug bounties for 2018
•Kaspersky Launches CyberTrace (aggregated threat feed)
•Baffle now with Lamda protection
•Netskope now with GCP
•facebook app now with location blocking (android)
•Meanwhile FB renegs on phone # removal
•Mastercard small business toolkit
•W.VA and SANS girls go cyberstart
Corp I
(the good…)
•Exclusive Group to buy Secure Wave
•Popsico buys MuscleMilk
•Target buys Shipt
•nintex buys enable soft
•Apple to acquire Lighthouse AI patents
•NTT buys WhiteHat Security
•Okta to buy Azuqua (integration)
•F5 buys NGINX
•Amazon drops NY HQ2
•Google reports 3.4million paid in bug bounties for 2018
•Kaspersky Launches CyberTrace (aggregated threat feed)
•Baffle now with Lamda protection
•Netskope now with GCP
•facebook app now with location blocking (android)
•Meanwhile FB renegs on phone # removal
•Mastercard small business toolkit
•W.VA and SANS girls go cyberstart
Corp I
(the good…)
•.NET now with encryption
•Cloudflare transparency report and new canaries
•StrongKy drops open-source FIDO server
•Fedex same day bot
•MariaDB now with enterprise
•EFF FitItAlready campaign
•New RedHat Certs
•Palo Alto Cortex, now with MS Graph Security
•Google to drop defense drone contract
•AWS, now without permission to pentest
•WebAuthn is now a standard
•crowdstrike mobile EDR
•GitHub increases payout range
Corp I
(the good…)
•Cloudflare transparency report and new canaries
•StrongKy drops open-source FIDO server
•Fedex same day bot
•MariaDB now with enterprise
•EFF FitItAlready campaign
•New RedHat Certs
•Palo Alto Cortex, now with MS Graph Security
•Google to drop defense drone contract
•AWS, now without permission to pentest
•WebAuthn is now a standard
•crowdstrike mobile EDR
•GitHub increases payout range
Corp I
(the good…)
Coffee Meets Bagel popped, 6.2m users
500px popped, 14.8m users
SenseNets (china face recognition) popped, 2.5m users
NCBP popped
Stanford Student Data Leak, 93 users
Toyota Australia popped
TurboTax Cred Stuffing
Citrix popped, 6TB
Verification.io, bad mongo, 800M-2B
College applicant data ransomed
Swedish medical phone service leaves recordings on internet, 2014-2019
GNCTD bad mongo, 458K
Oops, ScoreSense repayment
DarkMatter as a trusted root ca?
Nest secret microphone
SEDC will happily send passwd to email, any valid email
Dow Jones DB on bad elastic, 2.4m
Corp II
(…the ungood)
500px popped, 14.8m users
SenseNets (china face recognition) popped, 2.5m users
NCBP popped
Stanford Student Data Leak, 93 users
Toyota Australia popped
TurboTax Cred Stuffing
Citrix popped, 6TB
Verification.io, bad mongo, 800M-2B
College applicant data ransomed
Swedish medical phone service leaves recordings on internet, 2014-2019
GNCTD bad mongo, 458K
Oops, ScoreSense repayment
DarkMatter as a trusted root ca?
Nest secret microphone
SEDC will happily send passwd to email, any valid email
Dow Jones DB on bad elastic, 2.4m
Corp II
(…the ungood)
•GAO recommends a us version of gdpr
•National Cyber Strategy released
•Article 13
•FTC under fire (staples merger)
•FTC to mod GLBA?
•FTC levys 5.7mil COPPA fine on Music.ly(tiktok)
•CCPA amendment?
•predictive policing
•Manning subpoenaed again, but for what
•MalwareTechBlog gets trial Date
•Public recognition of "first" offensive cyber attack
•army clarifies definition of "killer robot"
•FCC gets hit with anti-robocall robocall campaign
•EDPB drops 19/20 WorkProgram
•EDPB "questions" FATCA
•EDPB drops Overview doc
•ETSI drops IoT security Standard
•EU, no more default creds
•Thailand removes need for warrants
Govt
•National Cyber Strategy released
•Article 13
•FTC under fire (staples merger)
•FTC to mod GLBA?
•FTC levys 5.7mil COPPA fine on Music.ly(tiktok)
•CCPA amendment?
•predictive policing
•Manning subpoenaed again, but for what
•MalwareTechBlog gets trial Date
•Public recognition of "first" offensive cyber attack
•army clarifies definition of "killer robot"
•FCC gets hit with anti-robocall robocall campaign
•EDPB drops 19/20 WorkProgram
•EDPB "questions" FATCA
•EDPB drops Overview doc
•ETSI drops IoT security Standard
•EU, no more default creds
•Thailand removes need for warrants
Govt
Papers
School shootings infographic
https://publicintelligence.net/fbi-school-shootings-2000-2017/
US Army autonomous robots whitepaper
https://publicintelligence.net/us-army-robotic-autonomous-multi-domain-ops/
Intro to hardware hacking
https://blog.rapid7.com/2019/02/20/iot-security-introduction-to-embedded-hardware-hacking/
GSuite abuse
https://www.perimeterx.com/blog/abusing-gsuite-for-data-scraping/
MS 2018 Security Intelligence Report
https://clouddamcdnprodep.azureedge.net/gdc/gdcVAOQd7/original
School shootings infographic
https://publicintelligence.net/fbi-school-shootings-2000-2017/
US Army autonomous robots whitepaper
https://publicintelligence.net/us-army-robotic-autonomous-multi-domain-ops/
Intro to hardware hacking
https://blog.rapid7.com/2019/02/20/iot-security-introduction-to-embedded-hardware-hacking/
GSuite abuse
https://www.perimeterx.com/blog/abusing-gsuite-for-data-scraping/
MS 2018 Security Intelligence Report
https://clouddamcdnprodep.azureedge.net/gdc/gdcVAOQd7/original
Nike trainers with bricked mode
https://thispersondoesnotexist.com/
https://threatpost.com/reddit-alice-bob-mitm/142145/
drug bust via playstation serial #
Adi Shamir, no visa
MS open sources calc.exe
W
T
F
https://thispersondoesnotexist.com/
https://threatpost.com/reddit-alice-bob-mitm/142145/
drug bust via playstation serial #
Adi Shamir, no visa
MS open sources calc.exe
W
T
F
Anchore engine (container scanner)
OpenAPI (api scanner_
GrandCrab Decryptor
things to kill in win10
GoBuster (dns abuse)
Colasoft packet editor
Wireshark, now with npcap
revisit win firewall and GPO
2019 SQL injection Dorks
NSA Ghidra - reverse engineering
Deepsound - audio stego
Tools
OpenAPI (api scanner_
GrandCrab Decryptor
things to kill in win10
GoBuster (dns abuse)
Colasoft packet editor
Wireshark, now with npcap
revisit win firewall and GPO
2019 SQL injection Dorks
NSA Ghidra - reverse engineering
Deepsound - audio stego
Tools
RSA - Container breakout
RSA - Antoher OLE 0-day
RSA - satellites
RSA - ultrasound hacking
BSidesSF - logitech harmony
WOPR Summit - Windows IOT Core bug
P
a
s t C
o
n
s
RSA - Antoher OLE 0-day
RSA - satellites
RSA - ultrasound hacking
BSidesSF - logitech harmony
WOPR Summit - Windows IOT Core bug
P
a
s t C
o
n
s
IANS Dallas Informatio Security Forum 27 Mar - Dallas
Bsides Austin 28-29 March – Austin
Kernelcon 5-6 Apr - Omaha
HouSecCon 9 - 9-10 Apr – Houston
BSidesOK – 10-12 Apr - Tulsa
ThotCon 3-4 May – Chicago
HackMiami 17-19 May – Miami
NolaCon 17-19 May – New Orleans
CircleCityCon 6.0 31 May – 2 Jun - Induabapolis
F
u
t
u
r
e
C
o
n
s
Bsides Austin 28-29 March – Austin
Kernelcon 5-6 Apr - Omaha
HouSecCon 9 - 9-10 Apr – Houston
BSidesOK – 10-12 Apr - Tulsa
ThotCon 3-4 May – Chicago
HackMiami 17-19 May – Miami
NolaCon 17-19 May – New Orleans
CircleCityCon 6.0 31 May – 2 Jun - Induabapolis
F
u
t
u
r
e
C
o
n
s
ISSA Fort Worth @ISSAFortWorth
( 2nd Tuesday / location varies )
Hack Ft Worth @Hack_FtW
( 3
rd
Tuesday / Barrel & Bones, Fort Worth)
DHA @Dallas_Hackers
( 1
st
Wednesday / Family Karaoke, Dallas )
TX2600 @dallas2600
( 1
st
Fri / Wild Turkey 35&WalnutHill, Dallas )
The Lab.MS @TheLab_ms
( 2
nd
Saturday + random events / TheLab.ms, Plano )
OWASP Dallas @OWASPDallas
( 3
rd
Tuesday / location varies )
Pwn School Project
( 3
rd
Wed / Dallas | 4
th
Mon Denton )
Crypto Party DFW @CryptoPartyDFW
( 3
rd
Thursday / TheLab.ms, Plano )
North Texas ISSA @ntxissa
( 3
rd
Thursday / Maggiano’s, Plano )
North Texas Cyber Security Group @ntxcsg
( Last Thursday, Jakes, Frisco )
Dallas MakerSpace @dallasmakers
( Random events / Carrollton )
0-day All Day @0Dayallday
( Quarterly / GeniusDen, Dallas )
Where
( 2nd Tuesday / location varies )
Hack Ft Worth @Hack_FtW
( 3
rd
Tuesday / Barrel & Bones, Fort Worth)
DHA @Dallas_Hackers
( 1
st
Wednesday / Family Karaoke, Dallas )
TX2600 @dallas2600
( 1
st
Fri / Wild Turkey 35&WalnutHill, Dallas )
The Lab.MS @TheLab_ms
( 2
nd
Saturday + random events / TheLab.ms, Plano )
OWASP Dallas @OWASPDallas
( 3
rd
Tuesday / location varies )
Pwn School Project
( 3
rd
Wed / Dallas | 4
th
Mon Denton )
Crypto Party DFW @CryptoPartyDFW
( 3
rd
Thursday / TheLab.ms, Plano )
North Texas ISSA @ntxissa
( 3
rd
Thursday / Maggiano’s, Plano )
North Texas Cyber Security Group @ntxcsg
( Last Thursday, Jakes, Frisco )
Dallas MakerSpace @dallasmakers
( Random events / Carrollton )
0-day All Day @0Dayallday
( Quarterly / GeniusDen, Dallas )
Where
All images scavenged without permission
All images scavenged without permission
All images scavenged without permission
Tags
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 16
- Slides 17
- Age 461 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
33 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
36 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
33 views
14
Fertility awareness methods for women in the society
Isaiah47
30 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
29 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
30 views