Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @craigtweets
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @craigtweets
-
Prikvačeni tweet
External attempts to exploit
#cve201919781 flaw will include HTTP requests with ‘/../’ and ‘/vpns/’ in the URL and/or custom headers containing traversal patterns (e.g. ‘/../’).https://www.tripwire.com/state-of-security/vert/citrix-netscaler-adc-cve-2019-19781/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
I thought that simply sharing this dystopian video proudly shared by the Chinese gov would be adequate for people to ruminate on, but I’ll be more direct and note that civilians being surveilled and yelled at by drones is probably not a very good omen for global tech & privacy.https://twitter.com/globaltimesnews/status/1223218977570078721 …
1:44Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Thanks
@EFF for this! "Why Public Wi-Fi is a Lot Safer Than You Think" https://www.eff.org/deeplinks/2020/01/why-public-wi-fi-lot-safer-you-think … I keep saying that: Wifi security is largely irrelevant.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
This McDonalds has the best french fries of any McDonalds we've ever built before. We are very, very confident that it cannot be robbed.https://twitter.com/BBCr4today/status/1220631511101210630 …
1:15Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Call a vulnerability by a dog's name one time and it follows you around for life. No Google News, this Goldendoodle is not a GOLDENDOODLE padding oracle.pic.twitter.com/G6LNc67e0T
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Previously, n-day exploitation was a lot rarer, but the cybercrime economy has shifted a lot in recent years. With the rise of ransomware and notable widespread attacks like NotPetya & WannaCry, not patching efficiently has become much more of a risk to organizations.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Zu Potsdamer Hackerangriff: Ich hab eine Liste mit für die Citrix-Lücke verwundbaren hosts vom 14.1., da sind zwei mit einem hostnamen "[dot]potsdam[dot]de".
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
great root cause analysis of the Citrix NetScaler/ADC CVE-2019-19781 vuln: incoming path not canonicalized, so ".." causes file to be treated differently (CWE-41/CWE-57 "pathname equivalence") --> incorrect authorization (CWE-863) --> file write using directory traversal (CWE-23)https://twitter.com/craigtweets/status/1214974955835854848 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Threat actors scanning for an unpatched
#CitrixADC vulnerability according to@GossiTheDog and@johullrich. And,@craigtweets says he's made a working exploit for the flaw.@MT_Heller http://buff.ly/2t57hqV pic.twitter.com/H8lMV7Xnba
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
We've added detection for the Citrix vulnerability (CVE-2019-19781). If you've configured Shodan Monitor (https://monitor.shodan.io ) then you will automatically get notified if any of your devices are impacted.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
So it looks like
#Citrix#NetScaler#cve201919781 will receive a fix this month.pic.twitter.com/J1dhMc6C5j
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
FWIW - I have enabled the mitigation even on an unlicensed appliance. I don't know what this tweet is about.https://twitter.com/shammyowens/status/1215946957463658497 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Nothing says "have a nice weekend" better than releasing a zero day exploit on a late Friday eveningpic.twitter.com/flXSYIZq7Y
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
After Citrix revealed a critical vulnerability impacting its ADC and Gateway products, hackers have started to scan the Internet for vulnerable systems, security researchers report. https://www.securityweek.com/hackers-scan-vulnerable-citrix-adc-systems … via
@SecurityWeek cc@craigtweets@GossiTheDog#Citrix#CybersecurityHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Craig Young proslijedio/la je Tweet
Attackers exploiting critical Citrix ADC, Gateway flaw, company yet to release fixes - http://bit.ly/30c52OM -
@CitrixNetwork@PTsecurity_UK@sans_isc@GossiTheDog@craigtweets@TripwireInc#CitrixADC#CitrixGatewaypic.twitter.com/N0ShIgQWdX
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Have reproduced Citrix SSL VPN pre-auth RCE successfully on both local and remote. Interesting bug!https://www.tripwire.com/state-of-security/vert/citrix-netscaler-cve-2019-19781-what-you-need-to-know/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
"Die Möglichkeit, dass ein unauthorisierter Remote-Angreifer beliebige Befehle auf einer Security-Appliance wie einem VPN-Gateway ausführen kann, ist eines der schlimmsten Szenarien, die man sich vorstellen kann"
#Citrix#NetScaler#cve201919781 https://www.golem.de/news/perl-injection-citrix-geraete-mit-schwerer-sicherheitsluecke-und-ohne-update-2001-145969.html … via@hannoHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
As promised, I've documented some additional information from
@TripwireInc research into#citrix#netscaler#cve201919781. There is a bit of misleading information out there so I hope this will clear the air a bit. https://www.tripwire.com/state-of-security/vert/citrix-netscaler-cve-2019-19781-what-you-need-to-know/ … cc:@sans_isc@johullrichHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
External attempts to exploit
#cve201919781 flaw will include HTTP requests with ‘/../’ and ‘/vpns/’ in the URL and/or custom headers containing traversal patterns (e.g. ‘/../’).https://www.tripwire.com/state-of-security/vert/citrix-netscaler-adc-cve-2019-19781/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Craig Young proslijedio/la je Tweet
Ab heute benachrichtigt CERT-Bund deutsche Netzbetreiber zu
#Citrix/#NetScaler#VPN-Gateways, auf denen der vom Hersteller dringend empfohlene#Workaround (https://support.citrix.com/article/CTX267679 …) für die#kritische#Schwachstelle CVE-2019-19781 noch nicht implementiert wurde. (1/3)Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.