2015, Examples and Libraries - Information Management Today

Bugs in open-source libraries impact 70% of modern software

Security Affairs

MAY 26, 2020

70 percent of mobile and desktop applications that today we use are affected at least by one security flaw that is present in open-source libraries. Experts pointed out that every library could be affected by one o more issues which will be inherited from all the applications that use them. ” reads the report.

Libraries

Libraries Security Access IT

Connecting town and gown through the library

CILIP

JUNE 13, 2023

Connecting town and gown through the library How to help a community explore its slave-trading history: Lesley English, Head of Library Engagement at Lancaster University Library, explains how the library plays a key role in building bridges between town and gown. We connect, we innovate, we include.”

Libraries

Libraries Access Agriculture Education

CVE-2020-7247 RCE flaw in OpenSMTPD library affects many BSD and Linux distros

Security Affairs

JANUARY 29, 2020

Security researchers have spotted a vulnerability, tracked as CVE-2020-7247, that affects a core email-related library used by many BSD and Linux distributions. The CVE-2020-7247 flaw was introduced in the OpenSMTPD in May 2018, but many distros still use older implementation of the library that are not impacted. Pierluigi Paganini.

Libraries

Libraries Security IT Information Security

Google expert disclosed details of an unpatched flaw in SymCrypt library

Security Affairs

JUNE 12, 2019

Tavis Ormandy, a white hat hacker Google Project Zero announced to have found a zero-day flaw in the SymCrypt cryptographic library of Microsoft’s operating system. Specially crafted certificates could be provided in multiple ways, for example in digitally signed and encrypted messages via the S/MIME protocol. Pierluigi Paganini.

Libraries

Libraries Encryption Security IT

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now

CILIP

JUNE 14, 2023

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now The libraries and information sector has a highly experienced and predominantly female workforce, with 40 per cent of staff having more than 20 years of work experience, according to data gathered for the Workforce Mapping 2023 survey.

Libraries

Libraries Records Management Archiving Government

Web application exposures continue do bedevil companies as digital transformation accelerates

The Last Watchdog

MARCH 21, 2019

For example, last year, a vulnerability in the open source jQuery File Upload plugin was discovered. This jQuery vulnerability has been known to the black hat community since about 2015. Spreading exposures. It has been embedded in countless web applications – with a dangerous flaw lurking within. Baking-in security.

Digital transformation

Digital transformation Libraries Security Cloud

Drupal addresses two XSS flaws by updating the CKEditor

Security Affairs

MARCH 20, 2020

x that fix two XSS vulnerabilities affecting the CKEditor library. x that address two XSS vulnerabilities that affect the CKEditor library. “The Drupal project uses the third-party library CKEditor , which has released a security improvement that is needed to protect some Drupal configurations.”

Libraries

Libraries Risk Access Security

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

” The Kinsing miner is a Golang -based Linux agent that uses several Go libraries, including: go-resty – an HTTP and REST client library, used to communicate with a Command and Control (C&C) server. gopsutil – a process utility library, used for system and processes monitoring. ” concludes the experts.

Mining

Mining Libraries Cloud Communications

Google found zero-click vulnerabilities in Apple’s multimedia processing components

Security Affairs

APRIL 29, 2020

The discovery urges Apple into implementing additional security measures to protect these components, following the approach already adopted by Google to protect multimedia processing libraries. Multimedia processing libraries are used by the modern mobile OS to automatically manage multimedia files (i.e. images, audio, and videos).

Libraries

Libraries Paper Security Cybersecurity

Zeus Sphinx continues to be used in Coronavirus-themed attacks

Security Affairs

MAY 12, 2020

The Zeus Sphinx malware was first observed on August 2015, a few days after a new variant of the popular Zeus banking trojan was offered for sale on hacker forums, At the end of March, experts from IBM X-Force uncovered a hacking campaign employing the Zeus Sphinx malware that focused on government relief payment. Pierluigi Paganini.

Libraries

Libraries Sales Government IT

Feedify cloud service architecture compromised by MageCart crime gang

Security Affairs

SEPTEMBER 16, 2018

The script loads various resources from Feedify’s infrastructure, including a library named “feedbackembad -min-1.0.js The group has been active since at least 2015 and compromised many e-commerce websites to steal payment card and other sensitive data. Below an example script dubbed MagentoCore. <script URL: hxxps://cdn[.]feedify[.]net/getjs/feedbackembad-min-1.0.js.

Cloud

Cloud Libraries Access Security

Malicious developer distributed tainted version of Event-Stream NodeJS Module to steal Bitcoins

Security Affairs

NOVEMBER 27, 2018

The Event-Stream library is a very popular NodeJS module used to allow developers the management of data streams, it has nearly 2 million downloads a week. It has been estimated that the tainted version of the library was downloaded by nearly 8 million developers. For example: $ npm ls event-stream flatmap -stream.

Libraries

Libraries Encryption IT Security

Google released PathAuditor to detect unsafe path access patterns

Security Affairs

DECEMBER 9, 2019

PathAuditor is a shared library that can be loaded into processes using LD_PRELOAD. “For that, we traverse the path and check if any component could be replaced by an unprivileged user, for example if a directory is user-writable. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Access

Access Libraries Security IT

The North Korean Kimsuky APT threatens South Korea evolving its TTPs

Security Affairs

MARCH 3, 2020

The “ AutoUpdate.dll” library then gains persistence by setting the following registry key “ HKCUSoftwareMicrosoftWindowsCurrentVersionRunOnceWindowsDefender ”. This task can be executed using the Tool Help Library Windows API family using CreateToolhelp32Snapshot() , Process32First() , and Process32Next() API. Conclusion.

IT

IT File names Libraries Communications

Happy Preservation Week!

Archives Blogs

APRIL 27, 2020

From April 26th-May 2nd, the Association for Library Collections and Technical Services is celebrating Preservation Week. Our first rehousing example is individual binders for our Papyrus Fragments (MSS 2015-008). This sculpture from an unprocessed series of the Francois Bucher Papers (MSS 2015-010) posed several problems.

Libraries

Libraries Paper Access IT

Doki, an undetectable Linux backdoor targets Docker Servers

Security Affairs

JULY 29, 2020

The malware uses the embedTLS library for cryptographic functions and network communication. An example domain would be: 6d77335c4f23[.]ddns[.]net Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Experts noticed that the script can install a fully undetected backdoor, dubbed by the researchers Doki.

Blockchain

Blockchain Mining Cloud Communications

History of the State Records Center

The Texas Record

NOVEMBER 1, 2018

The history of the Texas State Library and Archives Commission began in the 1830s when Texas was still a Republic. In 1909, the Texas Library and Historical Commission was created to direct the State Library, aid and encourage public libraries, and collect materials related to Texas history. Land at 4400 Shoal Creek Blvd.

Records Management

Records Management Libraries Archiving Government

Nodersok malware delivery campaign relies on advanced techniques

Security Affairs

SEPTEMBER 28, 2019

“It’s not uncommon for attackers to download legitimate third-party tools onto infected machines (for example, PsExec is often abused to run other tools or commands).” One of the second-stage instances of PowerShell downloads the legitimate node.exe tool, while another drops WinDivert packet capture library components.

e-Delivery

e-Delivery Retail Libraries Education

Emotet operators are running Halloween-themed campaigns

Security Affairs

OCTOBER 31, 2020

Emotet is a modular malware, its operators could develop new Dynamic Link Libraries to update its capabilities. An example of the text found in the spam emails is. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. since August. Dear, Trick or Treat? Details in the attachment. Mail: XXXXXXXXX.

File names

File names Libraries Ransomware Security

Gaining Root Access to Host through rkt Container hack

Security Affairs

JUNE 3, 2019

The attacker needs to have root access to the container, then when the user runs the ‘rkt enter’ command, he can overwrite binaries and libraries in the container to run his malicious code. For example , an attacker can overwrite /bin/bash in the container, because it is the default binary executed if the user doesn’t specify another.

Access

Access Libraries Security Cybersecurity

Reflections on international collaboration: enthusiasm, commitment, resilience. It is all about dive

CILIP

DECEMBER 2, 2019

Moving from Higher Education to the NHS in 1992, she created , with her new team, an innovative network of Health Libraries working collaboratively between the NHS and the Higher Education sector in London. Shane is the founding editor of the peer-reviewed journal, Health Information and Libraries Journal.

Libraries

Libraries IT Education Archiving

Expert publicly disclosed a zero-day vulnerability in KDE

Security Affairs

AUGUST 6, 2019

“KDE Frameworks is a collection of libraries and software frameworks by KDE readily available to any Qt-based software stacks or applications on multiple operating systems.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” Penner explained. Pierluigi Paganini.

Libraries

Libraries Security IT Information Security

Analyzing the APT34’s Jason project

Security Affairs

JUNE 6, 2019

Microsoft.Exchange.WebService.dll which includes the real functionalities used by Jason.exe, it’s a Microsoft developed library, PassSamplewhich includes some patterns implementation of possible Passwords (ie.[User@first]@@[user@first]123) Last Microsoft Exchange WebServices dll version dates to 2015. WebService.dll assemply version.

Computer and Electronics

Computer and Electronics Passwords Cybersecurity Security

xHelper, the Unkillable Android malware that re-Installs after factory reset

Security Affairs

APRIL 7, 2020

It provides the attackers with full access to all app data and can be used by other malware, too, for example, CookieThief.” ” Experts pointed out that xHelper also modifies a system library (libc.so) to prevent infected users from re-mounting system partition in the write mode. . ” concludes Kaspersky.

Manufacturing

Manufacturing Libraries Access Encryption

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

Security Affairs

JUNE 18, 2020

“For example, the attackers use long execution chains, crafted by combining malicious shellcode with legitimate tools and vulnerable executables. It exploits a vulnerability in the Windows wdigest.dll library and then uses an improved ListPlanting technique to inject its code into a trusted process. Pierluigi Paganini.

Military

Military Communications Libraries Encryption

Microsoft addresses CVE-2020-0601 flaw, the first issue ever reported by NSA

Security Affairs

JANUARY 15, 2020

. “This month we addressed the vulnerability CVE-2020-0601 in the usermode cryptographic library, CRYPT32.DLL, “This vulnerability is one example of our partnership with the security research community where a vulnerability was privately disclosed and an update released to ensure customers were not put at risk.”

Libraries

Libraries Encryption Security Risk

Feature Spotlight: Notes

Archive-It

JULY 12, 2023

Library of Virginia’s seed setting notes for the URL [link] In the example above, Roger Christman of the Library of Virginia has used these Notes in the seed settings to indicate how the Seed URL has changed over time. Library of Virginia’s collection overview notes about Facebook issues in 2015-2016.

Archiving

Archiving Libraries Communications IT

Feature Spotlight: Notes

Archive-It

JULY 12, 2023

Library of Virginia’s seed setting notes for the URL [link] In the example above, Roger Christman of the Library of Virginia has used these Notes in the seed settings to indicate how the Seed URL has changed over time. Library of Virginia’s collection overview notes about Facebook issues in 2015-2016.

Archiving

Archiving Libraries Communications IT

Experts found privilege escalation issue in Symantec Endpoint Protection

Security Affairs

NOVEMBER 14, 2019

The program does not validate whether the DLL that it is loading is signed (for example, using the WinVerifyTrust function). The fastprox.dll library is trying to import the dsparse.dll from it’s current working directory (CWD), which is C:WindowsSysWow64Wbem, while the file is actually located in the SysWow64 folder.”

Libraries

Libraries Security IT Information Security

MageCart crime gang is behind the British Airways data breach

Security Affairs

SEPTEMBER 11, 2018

The group has been active since at least 2015 and compromised many e-commerce websites to steal payment card and other sensitive data. Below an example script dubbed MagentoCore. <script The JavaScript library was modified on August 21, 20:49 GMT. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Libraries Access Security

Sky.com servers exposed via misconfiguration

Security Affairs

OCTOBER 9, 2021

UpLift Media, launched by Sky and Molson Coors in 2015, is an in-venue digital screen advertising network that operates digital screens in bars and other leisure venues across the UK. Sky, a subsidiary of Comcast, is Europe’s largest media company, boasting a 12% market share and a revenue of approximately £13.4

IoT

IoT Access Ransomware Education

UK National Cyber Security Centre urge to drop Python 2

Security Affairs

AUGUST 26, 2019

“If you maintain a library that other developers depend on, you may be preventing them from updating to 3. “The WannaCry ransomware provides a classic example of what can happen if you run unsupported software. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the agency.

Security

Security Risk Ransomware Libraries

Industrial Sector targeted in surgical spear-phishing attacks

Security Affairs

AUGUST 3, 2018

Then the crooks look for various ways in which they can monetize their effort, for example, by spoofing the bank details used to make payments. “For example, the archive mentioned above contains an executable file, which has the same name and is a password-protected self-extracting archive. states the researchers.

Phishing

Phishing Libraries Passwords Archiving

Supporting you and your profession through the CILIP community

CILIP

DECEMBER 1, 2021

library roles. Want to develop your skills, for example in digital or data? We aim to represent and support our international members through our engagement with IFLA and bi-lateral partnerships with library organisations in their country or region. information assets? traditional? Got a question to put to the community?

Libraries

Libraries Artificial Intelligence Access Retail

Documentation Theory for Information Governance

ARMA International

NOVEMBER 15, 2019

Lund, for example, question whether Facebook is a digital document. Organizing and managing a database, for example, involves the selection, organization, and management of documents. A digital tablet, for example, involves different materials and affords different practices than a clay tablet. Library Trends 52, no.3,

Information governance

Information governance Government Libraries Paper

The analysis of the code reuse revealed many links between North Korea malware

Security Affairs

AUGUST 10, 2018

In defining similarities, we take into account only unique code connections, and disregard common code or libraries. For example, the “Common SMB module” that was part of the WannaCry Ransomware (2017) was similar to the code used the malware Mydoom (2009), Joanap , and DeltaAlfa. ” states the report.

Libraries

Libraries Ransomware Security Access

Buran ransomware-as-a-service continues to improve

Security Affairs

NOVEMBER 12, 2019

Buran is advertised as a stable malware that uses an offline cryptoclocker , 24/7 support, global and session keys, and has no third-party dependencies such as libraries. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the analysis. Pierluigi Paganini.

Ransomware

Ransomware Encryption Libraries Security

Other 3,700 MikroTik Routers compromised in cryptoJacking campaigns

Security Affairs

SEPTEMBER 10, 2018

” Example infected #MikroTik router: [link] CPU usage of client throttled to ~80% pic.twitter.com/b7HOrEz6Tg. According to Trustwave the hackers were exploiting a zero-day flaw in the MikroTik routers to inject a copy of the Coinhive library in the traffic passing through the MikroTik routers. Pierluigi Paganini.

Mining

Mining IoT Libraries Security

Your journey starts here ? achieving success with CILIP

CILIP

AUGUST 20, 2021

library roles. Want to develop your skills, for example in digital or data? We aim to represent and support our international members through our engagement with IFLA and bi-lateral partnerships with library organisations in their country or region. The 2015 Workforce Mapping (www.cilip.org.uk/WorkforceMapping)

Libraries

Libraries Artificial Intelligence Access Retail

Interview With Mark Myers on the Texas Digital Archive

The Texas Record

JULY 31, 2018

But in January 2015, the records of Governor Rick Perry’s administration were received by TSLAC. Another issue, since agencies generally transfer older records that are not actively in use, would be any kind of legacy file formats or media (floppy disks for example). Can be accessed here: [link]. [2] Can be accessed here: [link].

Archiving

Archiving Paper Libraries Government

Mysterious DarkUniverse APT remained undetected for 8 years

Security Affairs

NOVEMBER 5, 2019

The executable file embedded in the documents drops two dynamic-link libraries on the target system, the updater. “ DarkUniverse is an interesting example of a full cyber-espionage framework used for at least eight years. mod and glue30.dll. The updater. Attackers used C2 servers on cloud storage at mydrive. Pierluigi Paganini.

Libraries

Libraries Phishing Communications Cloud

Attor malware was developed by one of the most sophisticated espionage groups

Security Affairs

OCTOBER 10, 2019

“For example, in order to be able to report on the victim’s activities, Attor monitors active processes to take screenshots of selected applications. The malware implements a modular structure with a dispatcher and loadable plugins, all of which are implemented as dynamic-link libraries (DLLs). ru , and payment system WebMoney.

Communications

Communications Encryption Metadata Libraries

ATMitch: New Evidence Spotted In The Wild

Security Affairs

MAY 7, 2019

This library provides access to the E X tension for F inancial S ervice (XFS) API, the communication interface needed to interact with AMT components such as PIN pad and cash dispenser. Figure 5: “msxfs.dll”, library required by malware to communicate with ATM device. Figure 6: Discovering of PinPad and Dispenser components.

Libraries

Libraries e-Discovery Communications File names

Writing Your First Bootloader for Better Analyses

Security Affairs

SEPTEMBER 3, 2019

We need to tell to the liner that we want a plain binary file without linked libraries or linked symbols, fir such a reason we’re going to use –oformat binar. For example %cx could be: 0x0000if msg is printed, 0x0001 if msg2 is printed, 0x0002 if msg3 is printed and 0x0003 if we want to start the clock printing loop. as -o boot.o

Computer and Electronics

Computer and Electronics Libraries Cybersecurity Security

Bugs in open-source libraries impact 70% of modern software

Connecting town and gown through the library

Trending Sources

CVE-2020-7247 RCE flaw in OpenSMTPD library affects many BSD and Linux distros

Google expert disclosed details of an unpatched flaw in SymCrypt library

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now

Web application exposures continue do bedevil companies as digital transformation accelerates

Drupal addresses two XSS flaws by updating the CKEditor

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Google found zero-click vulnerabilities in Apple’s multimedia processing components

Zeus Sphinx continues to be used in Coronavirus-themed attacks

Feedify cloud service architecture compromised by MageCart crime gang

Malicious developer distributed tainted version of Event-Stream NodeJS Module to steal Bitcoins

Google released PathAuditor to detect unsafe path access patterns

The North Korean Kimsuky APT threatens South Korea evolving its TTPs

Happy Preservation Week!

Doki, an undetectable Linux backdoor targets Docker Servers

History of the State Records Center

Nodersok malware delivery campaign relies on advanced techniques

Emotet operators are running Halloween-themed campaigns

Gaining Root Access to Host through rkt Container hack

Reflections on international collaboration: enthusiasm, commitment, resilience. It is all about dive

Expert publicly disclosed a zero-day vulnerability in KDE

Analyzing the APT34’s Jason project

xHelper, the Unkillable Android malware that re-Installs after factory reset

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

Microsoft addresses CVE-2020-0601 flaw, the first issue ever reported by NSA

Feature Spotlight: Notes

Feature Spotlight: Notes

Experts found privilege escalation issue in Symantec Endpoint Protection

MageCart crime gang is behind the British Airways data breach

Sky.com servers exposed via misconfiguration

UK National Cyber Security Centre urge to drop Python 2

Industrial Sector targeted in surgical spear-phishing attacks

Supporting you and your profession through the CILIP community

Documentation Theory for Information Governance

The analysis of the code reuse revealed many links between North Korea malware

Buran ransomware-as-a-service continues to improve

Other 3,700 MikroTik Routers compromised in cryptoJacking campaigns

Your journey starts here ? achieving success with CILIP

Interview With Mark Myers on the Texas Digital Archive

Mysterious DarkUniverse APT remained undetected for 8 years

Attor malware was developed by one of the most sophisticated espionage groups

ATMitch: New Evidence Spotted In The Wild

Writing Your First Bootloader for Better Analyses

Stay Connected