Aggregator
Internet Archive Hacked, Introducing The AI Toilet Camera
5 days 4 hours ago
In this episode, we discuss the significant data breach at the Internet Archive, affecting 33 million users. We also examine the introduction of an AI-integrated toilet camera by Throne, designed for health monitoring by analyzing bodily waste, and the ensuing privacy concerns. We explore these technological advancements alongside other unusual tech innovations, touching upon security […]
The post Internet Archive Hacked, Introducing The AI Toilet Camera appeared first on Shared Security Podcast.
The post Internet Archive Hacked, Introducing The AI Toilet Camera appeared first on Security Boulevard.
Tom Eston
Top 10 strategic technology trends shaping the future of business
5 days 4 hours ago
The ethical and responsible use of technology is fast becoming part of the mandate for CIOs, as organizations balance the need for progress with the protection of stakeholders’ trust and well-being, according to Gartner. “This year’s top strategic technology trends span AI imperatives and risks, new frontiers of computing and human-machine synergy,” said Gene Alvarez, Distinguished VP Analyst at Gartner. “Tracking these trends will help IT leaders shape the future of their organizations with responsible … More →
The post Top 10 strategic technology trends shaping the future of business appeared first on Help Net Security.
Help Net Security
Linux 上的 Intel、AMD CPU 受到新披露的 Spectre 绕过的影响
5 days 4 hours ago
据了解,最新一代的 Intel 处理器(包括 Xeon 芯片)和 AMD 在 Linux 上的旧微架构很容易受到绕过现有“Spectre”缓解措施的新推测执行攻击。
这些漏洞影响英特尔第 12、第 13 和第 14 代芯片以及面向服务器的第 5 和第 6 代 Xeon 处理器,以及 AMD 的 Zen 1、Zen 1+ 和 Zen 2 处理器。
这些攻击破坏了 x86 处理器上的间接分支预测器屏障 (IBPB),这是针对推测执行攻击的核心防御机制。
推测执行是现代 CPU 上的一项性能优化功能,它在知道未来任务是否需要指令之前执行指令,从而在预测正确时加快进程。
基于错误预测执行的指令称为瞬态指令并被压缩。这种机制一直是侧通道风险(例如 Spectre)的来源,因为推测过程调用可以从 CPU 缓存检索的敏感数据。
新的类似幽灵的攻击
安全研究人员表示,尽管为遏制类似 Spectre 的攻击进行了多年的缓解努力,但仍有许多变体绕过了现有的防御措施。
他们的贡献是跨进程攻击(针对 Intel)和 PB-inception 攻击(针对 AMD),即使在应用 IBPB 后也允许劫持投机返回目标,从而绕过当前的保护并泄露敏感信息。
在第一种情况下,攻击利用了英特尔微代码中的一个漏洞,即 IBPB 不会在上下文切换后完全使返回预测无效。攻击者操纵返回指令的推测执行,允许过时的预测从 suid 进程中泄漏敏感信息,例如 root 密码的哈希值。
在 AMD 处理器上,Linux 内核中的 IBPB-on-entry 应用不当,导致返回预测器即使在 IBPB 之后仍保留过时的预测。攻击者在 IBPB 触发之前错误训练返回预测器,劫持它以在屏障之后泄漏特权内核内存。
IBPB 后英特尔和 AMD 仍然脆弱的回报预测
应对措施和缓解措施
研究人员于 2024 年 6 月向英特尔和 AMD 通报了这些问题。英特尔回应称,他们已经在内部发现了该问题,并为其分配了 CVE-2023-38575 标识符。
该公司于 3 月份发布了可通过固件更新进行的微代码修复,但研究人员指出,该代码尚未到达所有操作系统,Ubuntu 就是其中之一。
AMD 也确认了该漏洞,并表示该漏洞已被记录并追踪为 CVE-2022-23824。值得注意的是,AMD 的公告将 Zen 3 产品列为受影响的产品。但是,AMD 将该问题归类为软件错误,而不是硬件缺陷。
受影响的旧架构以及 AMD 很久以前就了解了该错误的事实可能解释了该公司决定不发布纠正微代码的原因。尽管这两家 CPU 供应商知道 Spectre 绕过,但这些公司在公告中将其标记为具有潜在影响。
通过他们的工作,安全研究人员能够证明这种攻击甚至在 Linux 6.5 上也能发挥作用,Linux 6.5 附带了 IBPB-on-entry 防御,被认为是针对 Spctre 利用的最强防御。目前,有关高校正在与 Linux 内核维护人员合作开发适用于 AMD 处理器的补丁。
胡金鱼
CVE-2017-6989 | Apple tvOS up to 10.2.0 AVEVideoEncoder memory corruption (HT207801 / EDB-42555)
5 days 4 hours ago
A vulnerability classified as critical has been found in Apple tvOS up to 10.2.0. This affects an unknown part of the component AVEVideoEncoder. The manipulation leads to memory corruption.
This vulnerability is uniquely identified as CVE-2017-6989. The attack needs to be approached locally. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2017-2487 | Apple tvOS up to 10.1 FontParser memory corruption (HT207601 / Nessus ID 99264)
5 days 4 hours ago
A vulnerability was found in Apple tvOS up to 10.1. It has been declared as critical. This vulnerability affects unknown code of the component FontParser. The manipulation leads to memory corruption.
This vulnerability was named CVE-2017-2487. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2008-2813 | Shoutcastadmin WallCity-Server Shoutcast Admin Panel 2.0 index.php page path traversal (EDB-5813 / XFDB-43109)
5 days 4 hours ago
A vulnerability has been found in Shoutcastadmin WallCity-Server Shoutcast Admin Panel 2.0 and classified as critical. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to path traversal.
This vulnerability was named CVE-2008-2813. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2901 | Haudenschilt Family Connections CMS 1.4 Addressbook addressbook.php poll_id sql injection (EDB-5811 / XFDB-43097)
5 days 4 hours ago
A vulnerability, which was classified as critical, has been found in Haudenschilt Family Connections CMS 1.4. This issue affects some unknown processing of the file addressbook.php of the component Addressbook. The manipulation of the argument poll_id leads to sql injection.
The identification of this vulnerability is CVE-2008-2901. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2904 | PHPMyCart shop.php cat sql injection (EDB-5812 / XFDB-43084)
5 days 4 hours ago
A vulnerability was found in PHPMyCart and classified as critical. Affected by this issue is some unknown functionality of the file shop.php. The manipulation of the argument cat leads to sql injection.
This vulnerability is handled as CVE-2008-2904. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2911 | Contenido CMS 4.8.4 index.php cross site scripting (EDB-5810 / XFDB-43107)
5 days 4 hours ago
A vulnerability, which was classified as problematic, was found in Contenido CMS 4.8.4. This affects an unknown part of the file index.php. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2008-2911. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2912 | Contenido CMS 4.8.4 cfg[templates][right_top_blank] code injection (EDB-5810 / XFDB-43103)
5 days 4 hours ago
A vulnerability has been found in Contenido CMS 4.8.4 and classified as critical. This vulnerability affects unknown code. The manipulation of the argument cfg[templates][right_top_blank] leads to code injection.
This vulnerability was named CVE-2008-2912. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2905 | Mambo up to 4.6.4 Cache mosConfig_absolute_path code injection (EDB-5808 / XFDB-43101)
5 days 4 hours ago
A vulnerability was found in Mambo. It has been classified as critical. This affects an unknown part of the component Cache. The manipulation of the argument mosConfig_absolute_path leads to code injection.
This vulnerability is uniquely identified as CVE-2008-2905. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2915 | Pre Job Board Search Module kw sql injection (EDB-5809 / XFDB-43094)
5 days 4 hours ago
A vulnerability was found in Pre Job Board. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Search Module. The manipulation of the argument kw leads to sql injection.
This vulnerability is known as CVE-2008-2915. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2002-2118 | Blue World Communications Lasso Web Data Engine 3.6.5 URL memory corruption (XFDB-8208 / BID-4110)
5 days 4 hours ago
A vulnerability was found in Blue World Communications Lasso Web Data Engine 3.6.5 and classified as critical. Affected by this issue is some unknown functionality of the component URL Handler. The manipulation leads to memory corruption.
This vulnerability is handled as CVE-2002-2118. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2002-2039 | QNX RTOS 4.25/6.1.0 /bin/su Core Dump information disclosure (XFDB-9256 / BID-4914)
5 days 5 hours ago
A vulnerability was found in QNX RTOS 4.25/6.1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /bin/su. The manipulation with the input SIGSERV leads to information disclosure (Core Dump).
This vulnerability is known as CVE-2002-2039. An attack has to be approached locally. There is no exploit available.
vuldb.com
CVE-2017-2487 | Apple watchOS up to 3.1 FontParser memory corruption (HT207602 / Nessus ID 99264)
5 days 5 hours ago
A vulnerability classified as critical has been found in Apple watchOS up to 3.1. Affected is an unknown function of the component FontParser. The manipulation leads to memory corruption.
This vulnerability is traded as CVE-2017-2487. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
国投智能并购南京金鼎科技签约仪式在厦举行
5 days 5 hours ago
2024年10月22日,国投智能与南京金鼎嘉崎信息科技有限公司(以下简称“南京金鼎科技”)投资并购签约仪式在厦门举行。此次并购是国投智能由国投集团直接管理后的第一个并购项目。国投智能董事长滕达、副总经理涂峥和南京金鼎科技董事长武春庆等公司管理层及各方相关人员参加会议。
投资并购南京金鼎科技,符合国投智能战略定位,能够与国投智能电子数据取证业务有效协同并开拓新行业市场,进一步提升服务政府和企业数字化转型的数字化、智能化服务能力。
下一步,国投智能将践行国有资本投资公司的目标和使命,赋能并增强南京金鼎科技的产业竞争力,实现其与国投智能的紧密融合,达到“1+1>2”的协同效应。同时,公司将着力提高南京金鼎科技在支持政府数字化转型方面的能力,以期在更广泛的领域提供更加高效、专业的服务。
企业资讯
利用Windows漏洞,攻击者能降级系统组件恢复漏洞
5 days 5 hours ago
研究员揭露了一种新的攻击技术,能够操纵Windows 11系统在更新时降级关键系统组件,从而让一些漏洞修复补丁失效。
CVE-2008-2914 | PHP JOBWEBSITE PRO Search Module jobsearch3.php position sql injection (EDB-5807 / XFDB-43092)
5 days 5 hours ago
A vulnerability was found in PHP JOBWEBSITE PRO. It has been classified as critical. Affected is an unknown function of the file jobseekers/jobsearch3.php of the component Search Module. The manipulation of the argument position leads to sql injection.
This vulnerability is traded as CVE-2008-2914. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2919 | Gryphonllc Gryphon gllcTS2 4.2.4 listing.php sort sql injection (EDB-5806 / XFDB-43089)
5 days 5 hours ago
A vulnerability, which was classified as critical, has been found in Gryphonllc Gryphon gllcTS2 4.2.4. This issue affects some unknown processing of the file listing.php. The manipulation of the argument sort leads to sql injection.
The identification of this vulnerability is CVE-2008-2919. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com