Category: News

From securityonline.info

UEFI firmware analysis with IDA Pro

analyse_fw_ida.py is a script for UEFI firmware analysis with IDA Pro

Usage:

• Copy ida_plugin\uefi_analyser directory to IDA plugins directory
• Edit config.json file
  • “PE_DIR” is a folder that contains all executable images from the UEFI firmware file
  • “DUMP_DIR” is a folder that contains all components from the firmware filesystem
  • “IDA_PATH” and “IDA64_PATH” are paths to IDA Pro executable files
• Run pip install -r requirements.txt
• Run python analyse_fw_ida.py -h command to display the help message

Read more…

From cyware.com

Ransomware attack campaigns typically use malware downloaders as the initial payload in their malicious phishing attachments. However, researchers have recently witnessed a series of attacks that buck the trend.

Read more…

From securityboulevard.com

Passwords have always been a weak link in security, but people are so used to them that getting them to change to a more secure form of authentication has been a difficult task. Could COVID-19 be the catalyst that ends up ushering in passwordless access?

The push is slowly happening. Gartner predicts that 60% of enterprises and 90% of midsize businesses will move to passwordless authentication by 2022. Although it has been discussed as option for years, there has been an uptick in interest in the technologies since 2018, according to Ant Allan, Gartner vice president analyst.

Read more…

From securityboulevard.com

LiveAuctioneers, an online auction platform headquartered in the United States, has confirmed a security incident after a database containing 3.4 million user records was put up for sale on the dark web for $2,500.

“As of July 11th, 2020, our cybersecurity team has confirmed that an unauthorized third party accessed certain user data through a security breach at a LiveAuctioneers data processing partner that occurred on June 19,” the company said. “LiveAuctioneers was one of a number of their partners who have experienced a breach from an unauthorized party since this data processing partner’s security was compromised. Our cybersecurity team has ensured the unauthorized access has ceased.”

Read more…

From zdnet.com

Business giant SAP released a patch today for a major vulnerability that impacts the vast majority of its customers. The bug, codenamed RECON, exposes companies to easy hacks, according to cloud security firm Onapsis, who discovered the vulnerability earlier this year, in May, and reported it to SAP to have it patched.

Read more…

From itproportal.com

Nowadays, most people are aware of the risk posed by malware – it is a broad attack vector that most organisations are used to dealing with in some capacity. However, while this may have caused such techniques as old-fashioned social engineering to fall to the back of the corporate mind, they still pose considerable risk for the simple reason they still work. Especially with the globe in the grip of coronavirus, it is easier for bad actors to play on emotions, exploiting people’s fears in particular, to encourage targets to click on malicious links.

Read more…

From theregister.com

Open-source CMS software Drupal has unveiled its first major update in five years by launching a new version 9.0.

The biggest update is backwards-compatibility from version 8.0: the project’s developers have styled the upgrade as not much more complex than adopting a point release.

“If you’ve kept your Drupal 8 site up to date, and have experience with updating your site to the latest minor version (e.g: 8.9.0) then you know everything you need in order to successfully upgrade to Drupal 9,” says the release FAQ.

Read more…