2015, Access and Libraries - Information Management Today

Bugs in open-source libraries impact 70% of modern software

Security Affairs

MAY 26, 2020

70 percent of mobile and desktop applications that today we use are affected at least by one security flaw that is present in open-source libraries. Experts pointed out that every library could be affected by one o more issues which will be inherited from all the applications that use them. percent) and broken access control (20.3

Libraries

Libraries Security Access IT

Connecting town and gown through the library

CILIP

JUNE 13, 2023

Connecting town and gown through the library How to help a community explore its slave-trading history: Lesley English, Head of Library Engagement at Lancaster University Library, explains how the library plays a key role in building bridges between town and gown. We connect, we innovate, we include.”

Libraries

Libraries Access Agriculture Education

Malware attack took down 600 computers at Volusia County Public Library

Security Affairs

JANUARY 22, 2020

System supporting libraries in Volusia County were hit by a cyber attack, the incident took down 600 computers at Volusia County Public Library (VCPL) branches. 600 staff and public access computers were taken down at Volusia County Public Library (VCPL) branches in Daytona Beach, Florida, following a cyberattack.

Libraries

Libraries Ransomware Encryption Access

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Instagram RCE gave hackers remote access to your device

Security Affairs

SEPTEMBER 24, 2020

The vulnerability ties on how Instagram uses third-party libraries for image processing, in particular, the open-source JPEG decoder Mozjpeg. A malicious code could allow the hackers to access a device’s phone contacts, camera, GPS data, and files stored into the device. ” reads the analysis published by CheckPoint.

Access

Access Libraries Communications IT

Backdoor mechanism found in Ruby strong_password library

Security Affairs

JULY 8, 2019

The developer Tute Costa found a backdoor in the Ruby library during regular security audits before deploying his code in the production environment. The developer Tute Costa found a backdoor in the Ruby library during regular security audits. The attacker created a new version of the library (version 0.0.7 version 0.0.7

Libraries

Libraries Passwords Security IT

Expert disclosed a new passcode bypass to access photos and contacts on a locked iPhone

Security Affairs

OCTOBER 16, 2018

iOS passionate Jose Rodriguez disclosed a new passcode bypass bug that could be to access photos and contacts on a locked iPhone XS. A few weeks ago, Rodriguez discovered a passcode bypass vulnerability in Apple’s new iOS version 12 that could have been exploited to access photos, contacts on a locked iPhone XS. Pierluigi Paganini.

Access

Access Libraries Security IT

Google released PathAuditor to detect unsafe path access patterns

Security Affairs

DECEMBER 9, 2019

Google has released the source code of a tool, dubbed PathAuditor, designed to help developers identify vulnerabilities related to file access. Google decided to release the source code of a tool dubbed PathAuditor designed to help developers identify vulnerabilities related to file access. ” reads the post published by Google.

Access

Access Libraries Security IT

FIN7 targeted a large U.S. carmaker phishing attacks

Security Affairs

APRIL 18, 2024

The attackers employed the lure of a free IP scanning tool to infect the systems with the Anunak backdoor and gain an initial foothold using living-off-the-land binaries, scripts, and libraries (lolbas). OpenSSH is also used for external access.

Phishing

Phishing Manufacturing Libraries IT

Malicious npm package ‘fallguys’ removed from the official repository

Security Affairs

AUGUST 30, 2020

The npm security team removed a malicious JavaScript library from the npm repository that was designed to steal sensitive files from the victims. The fallguys library claimed to provide an interface to the “ Fall Guys: Ultimate Knockout ” game API. ” reads the npm’s advisory. .”

Libraries

Libraries Access Security IT

Gaining Root Access to Host through rkt Container hack

Security Affairs

JUNE 3, 2019

Unpatched vulnerabilities affect the rkt container runtime that could be exploited by an attacker to escape the container and gain root access to the host. Using the gcc constructor attribute the code is run whenever the modified libc library is loaded by a process. rkt is designed to be secure, composable , and standards-based.

Access

Access Libraries Security Cybersecurity

Four npm packages found opening shells and collecting info on Linux, Windows systems

Security Affairs

OCTOBER 17, 2020

Experts warn that systems running applications that imported one of these packages should be potentially compromised because the three JavaScript libraries opened web shells on the computers running them. ASP, PHP, JSP), that attackers implant on web servers to gain remote access and code execution.

Libraries

Libraries Security Access IT

Drupal addresses two XSS flaws by updating the CKEditor

Security Affairs

MARCH 20, 2020

x that fix two XSS vulnerabilities affecting the CKEditor library. x that address two XSS vulnerabilities that affect the CKEditor library. “The Drupal project uses the third-party library CKEditor , which has released a security improvement that is needed to protect some Drupal configurations.”

Libraries

Libraries Risk Access Security

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now

CILIP

JUNE 14, 2023

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now The libraries and information sector has a highly experienced and predominantly female workforce, with 40 per cent of staff having more than 20 years of work experience, according to data gathered for the Workforce Mapping 2023 survey.

Libraries

Libraries Records Management Archiving Government

Analyzing the Telegram-based Android remote access trojan HeroRAT

Security Affairs

AUGUST 2, 2018

One of these features is the usage of the Xamarin Framework and TeleSharp Library for the development of the RAT. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The post Analyzing the Telegram-based Android remote access trojan HeroRAT appeared first on Security Affairs. Pierluigi Paganini.

Access

Access Libraries Sales Communications

Samsung fixes a zero-click issue affecting its phones

Security Affairs

MAY 7, 2020

. “A possible memory overwrite vulnerability in Quram qmg library allows possible remote arbitrary code execution. The vulnerability resides in the Skia Android graphics library and affects the way Android OS running on Samsung devices handles the custom Qmage image format (.qmg). system libraries.” or libhwui.so

IT

IT Libraries Security Access

EventBot, a new Android mobile targets financial institutions across Europe

Security Affairs

APRIL 30, 2020

EventBot is a mobile banking trojan and infostealer that abuses Android’s accessibility features to steal user data from financial applications, read user SMS messages, and steal SMS messages to allow the malware to bypass two-factor authentication.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Financial Services

Financial Services Libraries Encryption Authentication

Invitation to Tender ? Workforce Mapping

CILIP

OCTOBER 18, 2021

s library and information association and the Archives & Records Association (ARA) have jointly convened a Workforce Data Consortium (please see below for a full list of partners) to fund a Workforce Mapping Survey of the library, archives, records, information and knowledge sector. Invitation to Tender ? Workforce Mapping.

Libraries

Libraries Archiving Records Management Education

Oracle critical patch advisory addresses 284 flaws, 33 critical

Security Affairs

JANUARY 18, 2019

The Commons FileUpload library is the default file upload mechanism in Struts 2, the CVE-2016-1000031 was discovered two years ago by experts at Tenable. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the d escription provided by.

Financial Services

Financial Services Libraries Mining Retail

A high-severity flaw affects VMware Workstation, Fusion and vSphere products.

Security Affairs

JUNE 10, 2020

ESXi, Workstation and Fusion are affected by an out-of-bounds read vulnerability that can be exploited by an attacker with non-admin access to a virtual machine to read privileged information from memory. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the advisory.

Cloud

Cloud Libraries Authentication Access

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

” The Kinsing miner is a Golang -based Linux agent that uses several Go libraries, including: go-resty – an HTTP and REST client library, used to communicate with a Command and Control (C&C) server. gopsutil – a process utility library, used for system and processes monitoring. ” concludes the experts.

Mining

Mining Libraries Cloud Communications

Critical RCE affects older Diebold Nixdorf ATMs

Security Affairs

JUNE 9, 2019

The experts explained that had access to an ATM of Diebold vendor and started analyzing the machine a simple PC running Windows OS and exposing some services implemented by the ATM provider. The SpiService.exe is associated with XFS, the Extension for Financial Services DLL library (MSXFS.dll) that is specifically used by ATMs.”

Libraries

Libraries Communications Financial Services Risk

Drupal addressed several issues, including a critical file processing bug

Security Affairs

DECEMBER 19, 2019

The most serious issue is related to the Archive_Tar third-party library, it has been assigned a severity rating of critical. “The Drupal project uses the third-party library Archive_Tar, which has released a security update that impacts some Drupal configurations. The issue affects Drupal 7x, 8.7.x x versions.

CMS

CMS Libraries Archiving Access

TrueFire Guitar tutoring website was hacked, financial data might have been exposed

Security Affairs

MARCH 18, 2020

TrueFire has over 1 million users, its customer could pay to receive guitar tutorial from a library of over 900 courses and 40,000 video lessons. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The news of the incident was reported by several websites and forums, such as Guitar.com and Jazzguitar.

Data breaches

Data breaches Access Libraries Passwords

North Korea-linked Lazarus APT uses a Mac variant of the Dacls RAT

Security Affairs

MAY 9, 2020

North Korea-linked Lazarus APT group employed a Mac variant of the Dacls Remote Access Trojan (RAT) in recent attacks. The activity of the Lazarus APT group (aka HIDDEN COBRA ) surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. This library has been used by several threat actors.”

Libraries

Libraries Communications Encryption Authentication

Feedify cloud service architecture compromised by MageCart crime gang

Security Affairs

SEPTEMBER 16, 2018

The script loads various resources from Feedify’s infrastructure, including a library named “feedbackembad -min-1.0.js The group has been active since at least 2015 and compromised many e-commerce websites to steal payment card and other sensitive data. but apparently, the hackers re-infected the library. URL: hxxps://cdn[.]feedify[.]net/getjs/feedbackembad-min-1.0.js.

Cloud

Cloud Libraries Access Security

Hackers are using Zerologon exploits in attacks in the wild

Security Affairs

SEPTEMBER 24, 2020

The only limitation on how to carry out a Zerologon attack is that the attacker must have access to the target network. Secura researchers also released a Python script that uses the Impacket library to test vulnerability for the Zerologon exploit, it could be used by admins to determine if their domain controller is still vulnerable.

Authentication

Authentication Passwords Libraries Analytics

Sky.com servers exposed via misconfiguration

Security Affairs

OCTOBER 9, 2021

CyberNews researchers found an exposed configuration file hosted on a Sky.com subdomain, containing what appear to be production-level database access credentials, as well as addresses to development endpoints. Access to the configuration file has now been disabled. Who had access? What’s in the configuration file?

IoT

IoT Access Ransomware Education

Doki, an undetectable Linux backdoor targets Docker Servers

Security Affairs

JULY 29, 2020

Experts spotted an undetectable Linux malware that exploits undocumented techniques to evade detection and targets publicly accessible Docker servers. The malware uses the embedTLS library for cryptographic functions and network communication. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Blockchain

Blockchain Mining Cloud Communications

WAGO Industrial Switches affected by multiple flaws

Security Affairs

JUNE 13, 2019

“Two vulnerabilities (CVE-2017-16544 and CVE-2015-0235) were verified by emulating the device with the MEDUSA scaleable firmware runtime. SEC Consult also discovered that WAGO industrial switches use outdated versions of the BusyBox UNIX toolkit and the GNU C Library (glibc). ” reads the security advisory.

Libraries

Libraries Passwords IoT Security

Chronicle experts spotted a Linux variant of the Winnti backdoor

Security Affairs

MAY 20, 2019

Searching for samples of Winnti malware on its VirusTotal platform, the experts discovered a Linux variant of Winnti, dating back to 2015. While reviewing a 2015 report of a Winnti intrusion at a Vietnamese gaming company, we identified a small cluster of Winnti? ” reads the analysis published by Chronicle. Windows version.

Healthcare

Healthcare Communications Libraries Access

Microsoft found a new bug that allows bypassing SIP root restrictions in macOS

Security Affairs

MAY 31, 2023

System Integrity Protection (also referred to as rootless) is a macOS security feature introduced in OS X El Capitan (2015) (OS X 10.11). Once an attacker has bypassed SIP root restrictions it can install “undeletable” and persistent malware and access sensitive data on the device.

Libraries

Libraries Access Security IT

Drupal fixes 2 critical code execution issues flaws in Drupal 7, 8.5 and 8.6

Security Affairs

JANUARY 17, 2019

. “Some Drupal code (core, contrib , and custom) may be performing file operations on insufficiently validated user input, thereby being exposed to this vulnerability, This vulnerability is mitigated by the fact that such code paths typically require access to an administrative permission or an atypical configuration.”. Drupal 8.6.6,

CMS

CMS Libraries Security Access

The npm installer for PureScript package has been compromised

Security Affairs

JULY 15, 2019

Launching the installer by typing npm i -g purescript from the command line, it is possible to install the package, an extensive collection of libraries that counts for 2,000 installs a week. shinnn claims that the packagers were compromised by an attacker who gained access to his npm account.

Libraries

Libraries Access IT Security

Archive-It Partner News, April 2024

Archive-It

APRIL 17, 2024

Diversifying Access to the Local Historical Record with Community Webs Community Webs is happy to announce $345,000 in additional support from the National Endowment for the Humanities to digitize and provide open access to more than 411,000 local history collection items from seven Community Webs partners. We hope you can join us!

Archiving

Archiving IT Analytics Libraries

Iran-linked group Cobalt Dickens hit over 60 universities worldwide

Security Affairs

SEPTEMBER 12, 2019

This operation is similar to the threat group’s August 2018 campaign , using compromised university resources to send library-themed phishing emails.” The hackers appear to be interested in getting access to the library, they sent phishing messages to people with access to the library of the targeted university.

Phishing

Phishing Libraries File names Metadata

1.2 million CPR numbers for Danish citizen leaked through tax service

Security Affairs

FEBRUARY 10, 2020

“Google Hosted Libraries have been designed to remove all information that allows identifying users before logging on. Peter Kruse, cyber security expert and founder of the CSIS group, explained that Google had access to 1.2 “Google has accessed 1.2 .” states the Government Agency. ” explained Kruse.

Encryption

Encryption Libraries Access Government

Malicious developer distributed tainted version of Event-Stream NodeJS Module to steal Bitcoins

Security Affairs

NOVEMBER 27, 2018

The Event-Stream library is a very popular NodeJS module used to allow developers the management of data streams, it has nearly 2 million downloads a week. It has been estimated that the tainted version of the library was downloaded by nearly 8 million developers. The malicious code was introduced in the version 3.3.6,

Libraries

Libraries Encryption IT Security

Cisco addresses three high-severity issues in Webex, IP Cameras and ISE

Security Affairs

OCTOBER 9, 2020

An authenticated, local attacker could exploit the flaw to load a malicious library, experts pointed out that to exploit this vulnerability, the attacker needs valid credentials on the Windows system. “The vulnerability is due to improper enforcement of role-based access control (RBAC) within the web-based management interface.

Authentication

Authentication Libraries Access Security

Tens of million PCs potentially impacted by a flaw in HP Touchpoint Analytics

Security Affairs

OCTOBER 11, 2019

The experts pointed out that the Touchpoint Analytics service would have high-permission-level access to the PC hardware, this means that a flaw affecting the could be exploited to escalate privileges to SYSTEM and bypass security features. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Analytics

Analytics Libraries Security Access

Magecart 5 hacker group targets L7 Routers

Security Affairs

SEPTEMBER 27, 2019

The experts discovered that the Magecart hackers are able to inject credit card skimmer into a popular open-source JavaScript library that websites use to ensure wide compatibility with mobile browsing. The code provides a library-agnostic touch slider to allow developers to build touch galleries for their app projects.”

Libraries

Libraries Access IT Security

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Security Affairs

OCTOBER 15, 2020

Over the weekend, users have been complaining on Nook’s Facebook page and Twitter that they were not able to access their library of purchased eBooks and magazine subscriptions. Threat actors compromised the network of Barnes & Noble and gained access to its corporate systems. Pierluigi Paganini.

Ransomware

Ransomware Encryption Retail Access

FBI arrested a Russian citizen suspected to be the mastermind of Deer.io

Security Affairs

MARCH 10, 2020

Company A confirmed that if a hacker gains access to the user name and password of a user account, that hacker can use that account. A gamer account provides access to the user’s entire media library is contained within the account. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Sales

Sales Passwords Libraries Authentication

Blue Mockingbird Monero-Mining campaign targets web apps

Security Affairs

MAY 10, 2020

. “Blue Mockingbird is the name we’ve given to a cluster of similar activity we’ve observed involving Monero cryptocurrency-mining payloads in dynamic-link library (DLL) form on Windows systems.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the report. Pierluigi Paganini.

Mining

Mining Libraries Access Encryption

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

Security Affairs

OCTOBER 3, 2018

The activity of the Lazarus Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks and experts that investigated on the crew consider it highly sophisticated. “HIDDEN COBRA actors most likely deployed ISO 8583 libraries on the targeted switch application servers.

Retail

Retail Libraries Phishing Authentication

Bugs in open-source libraries impact 70% of modern software

Connecting town and gown through the library

Webinars

Trending Sources

Malware attack took down 600 computers at Volusia County Public Library

Webinars

Instagram RCE gave hackers remote access to your device

Backdoor mechanism found in Ruby strong_password library

Expert disclosed a new passcode bypass to access photos and contacts on a locked iPhone

Google released PathAuditor to detect unsafe path access patterns

FIN7 targeted a large U.S. carmaker phishing attacks

Malicious npm package ‘fallguys’ removed from the official repository

Gaining Root Access to Host through rkt Container hack

Four npm packages found opening shells and collecting info on Linux, Windows systems

Drupal addresses two XSS flaws by updating the CKEditor

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now

Analyzing the Telegram-based Android remote access trojan HeroRAT

Samsung fixes a zero-click issue affecting its phones

EventBot, a new Android mobile targets financial institutions across Europe

Invitation to Tender ? Workforce Mapping

Oracle critical patch advisory addresses 284 flaws, 33 critical

A high-severity flaw affects VMware Workstation, Fusion and vSphere products.

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Critical RCE affects older Diebold Nixdorf ATMs

Drupal addressed several issues, including a critical file processing bug

TrueFire Guitar tutoring website was hacked, financial data might have been exposed

North Korea-linked Lazarus APT uses a Mac variant of the Dacls RAT

Feedify cloud service architecture compromised by MageCart crime gang

Hackers are using Zerologon exploits in attacks in the wild

Sky.com servers exposed via misconfiguration

Doki, an undetectable Linux backdoor targets Docker Servers

WAGO Industrial Switches affected by multiple flaws

Chronicle experts spotted a Linux variant of the Winnti backdoor

Microsoft found a new bug that allows bypassing SIP root restrictions in macOS

Drupal fixes 2 critical code execution issues flaws in Drupal 7, 8.5 and 8.6

The npm installer for PureScript package has been compromised

Archive-It Partner News, April 2024

Iran-linked group Cobalt Dickens hit over 60 universities worldwide

1.2 million CPR numbers for Danish citizen leaked through tax service

Malicious developer distributed tainted version of Event-Stream NodeJS Module to steal Bitcoins

Cisco addresses three high-severity issues in Webex, IP Cameras and ISE

Tens of million PCs potentially impacted by a flaw in HP Touchpoint Analytics

Magecart 5 hacker group targets L7 Routers

U.S. Bookstore giant Barnes & Noble hit by cyberattack

FBI arrested a Russian citizen suspected to be the mastermind of Deer.io

Blue Mockingbird Monero-Mining campaign targets web apps

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

Stay Connected