May 18, SC Magazine – (International) Cisco patch blocks DoS vulnerability. Cisco released patches for its Adaptive Security Appliance (ASA) software after security researchers found attackers could alter a memory block, allowing the system to cease transferring traffic and cause a denial-of-service (DoS) situation. The flaw was reportedly linked to an issue in the installation of Internet Control Message Protocol (ICMP) error handling for Internet Protocol Security (IPSec) packets. Source
May 18, SecurityWeek – (International) Windows malware tries to avoid 400 security products. A senior security researcher at enSilo reported that the malware, Furtim was seen avoiding security detection as the malware has the ability to search the infected machine for registry entries or service executable names of 400 security products, including rare security products, virtualization environments, and sandboxing products. Once the malware detects a security product, the malware terminates itself and leaves the computer unharmed, avoiding any type of detection. Source
May 17, Softpedia – (International) Researcher wins $5,000 for finding XSS bug on Google in most peculiar manner. A security researcher from ERNW found a “sleeping stored” cross-site scripting (XSS) vulnerability in Google’s Cloud Console product which could allow an attacker to create a project with a payload in its name and leave it on the dashboard, tricking an administrator into deleting the unknown project and triggering the exploit. Google was made aware of the exploit. Source
Reprinted from the USDHS Daily Open Source Infrastructure Report