Open Source Archives

Threat actors launch zero-day attack against Python Package Index (PyPI) packages

Application Security, Source Code Security, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 24, 2023 / FortiGuard, Open Source, PyPI, Python

Researchers have discovered threat actors launching zero-day attack against packages in the Python Package Index (PyPI) repository.

Google adds OSS-Fuzz open source fuzzer capability to discover Log4Shell vulnerability

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / December 17, 2021 / Apache, fuzzer, Log4j, log4Shell, Open Source, OSS-Fuzz

As the catastrophic Log4j vulnerability continues to cause havoc on the internet and organizations, Google in collaboration with security firm Code Intelligence has released an update to open source fuzzer (OSS-Fuzz) that can detect the Log4Shell vulnerability.

Microsoft open sources CodeQL queries to scan for Solarwinds-like Solorigate activity

Application Security, Cybersecurity Attacks, Data Breach / By Frank Crast / February 26, 2021 / AppSec, CodeQL, GitHub, IOC, Microsoft, Open Source, Solarigate, SolarWinds, Source Code, Supply Chain

Microsoft has open sourced CodeQL queries used to scan for Solorigate malware activity that matches the SolarWinds supply-chain attack.

Microsoft October 2020 Security Updates and “Bad Neighbor” RCE fix (updated)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / October 16, 2020 / .NET, Adobe, codecs, CVE-2020-16898, CVE-2020-16951, CVE-2020-16952, CVE-2020-17022, CVE-2020-17023, Dynamics, Exchange Server, Flash Player, JET Database, Microsoft, Open Source, PowerSHell, Visual Studio, Windows

Microsoft has released the October 2020 Security updates that includes patches for 87 vulnerabilities, 11 of them rated Critical. The update also includes a patch for a Critical “Bad Neighbor” vulnerability and two out-of-band patches.

Jenkins patches Critical vulnerability (CVE-2019-17638)

Application Security, Vulnerabilities & Exploits / By Frank Crast / August 18, 2020 / CVE-2019-17638, Jenkins, Jetty, Open Source

Jenkins, a popular open source automation server software, has patched a Critical buffer corruption vulnerability CVE-2019-17638 in bundled Jetty.

Microsoft March 2020 Security Updates, fix for SMBv3 RCE vulnerability (updated)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / March 12, 2020 / Azure, ChakraCore, CVE-2020-0684, CVE-2020-0852, CVE-2020-0872, CVE-2020-0883, DevOps, Dynamics, Edge, Microsoft, Open Source, SMB, SMBGhost, Visual Studio, Windows Defender

Microsoft released the March 2020 Security Updates that include 115 unique vulnerability fixes, 26 of those rated critical. This is the largest patch release in Microsoft’s history. Microsoft also issued guidance and a new security update to fix an SMBv3 RCE vulnerability dubbed SMBGhost.

Microsoft introduces Application Inspector

Application Security, Cybersecurity Articles / By Frank Crast / January 21, 2020 / API, Application, Application Inspector, AppSec, AWS, Azure, Cloud, Cryptography, Microsoft, Open Source, SDLC

Microsoft has introduced a new source code analyzer tool dubbed Microsoft Application Inspector. The tool is designed to “identify interesting features in source code” and can help enable developers understand software components your apps use.

GitHub launches ‘Security Lab’ to help secure open source software

Application Security, Cybersecurity Articles, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 18, 2019 / AppSec, GitHub, Open Source, SDLC, Security Lab

GitHub, one of the world’s leading software development platforms, has launched GitHub Security Lab with aim to secure open source software.

Broadcom WiFi chipset driver vulnerabilities

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 17, 2019 / brcmfmac, Broadcom, EAPOL, Open Source, WiFi, wl

The CERT Coordination Center (CERT/CC) has released a security advisory describing multiple vulnerabilities that impact Broadcom WiFi chipset drivers. Four vendors have confirmed they are impacted at the time of the latest published advisory on Wednesday.

Internet exposed Redis servers

Leave a Comment / Data Breach, Server Security / By Frank Crast / June 1, 2018 / Internet, Open Source, Redis, server

Does your organization have any Redis servers exposed to the internet? If so, you should disconnect them from the public and ensure Redis services are exposed to only “trusted” environments such as your internal company network.