{"id":12396,"date":"2018-05-25T08:00:22","date_gmt":"2018-05-25T16:00:22","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/05\/25\/news-6165\/"},"modified":"2018-05-25T08:00:22","modified_gmt":"2018-05-25T16:00:22","slug":"news-6165","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/05\/25\/news-6165\/","title":{"rendered":"TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of May 21, 2018"},"content":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 25 May 2018 12:00:45 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Not that I needed to the reminder, but the influx of emails with the subject line \u201cUpdates to our Privacy Policy\u201d from companies that I deal with (and some that I\u2019ve never heard of!) means that TODAY is the day! The General Data Protection Regulation (GDPR) has officially taken effect. Originally adopted by the European Union (EU) in 2016 in an effort to protect EU citizen data in a consistent manner, the regulation gave companies two years to achieve GDPR compliance. So everyone is 100 percent compliant, right? C\u2019mon, you had two years to get ready.<\/p>\n

Unfortunately, as everyone suspected, it\u2019s not even close. According to a survey<\/a> conducted last month by the Ponemon Institute to over 1,000 companies in the United States and Europe, half of the companies will not meet the deadline or didn\u2019t know if they would. But that\u2019s just one side of the story. Reuters surveyed<\/a> 24 European regulators earlier this month and 17 them said they didn\u2019t have the funding or resources in place to respond to GDPR complaints. It will be interesting to see how GDPR plays out and how it will be enforced. Will my favorite shoe store stop sending me sale notices? Will it mean the death of the e-newsletter? Only time will tell.<\/p>\n

If you need information on how to prepare for GDPR, Trend Micro has a resource page that includes a checklist, case studies and other key resources. You can even learn from our experiences on how we prepared for GDPR. Get the latest information here: https:\/\/www.trendmicro.com\/en_us\/business\/capabilities\/solutions-for\/gdpr-compliance.html<\/a><\/p>\n

New Product Version Release<\/strong><\/p>\n

Earlier this week, we released version 5.0.1 build 108768 of the TippingPoint Security Management System (SMS). For a complete list of enhancements and changes, customers can refer to the product Release Notes located on the Threat Management Center (TMC) website<\/a>. For questions or technical assistance, customers can contact the Trend Micro TippingPoint Technical Assistance Center (TAC<\/a>).<\/p>\n

Zero-Day Filters<\/strong><\/p>\n

There are 15 new zero-day filters covering five vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and\/or optimize performance. You can browse the list of published advisories<\/a> and upcoming advisories<\/a> on the Zero Day Initiative<\/a> website. You can also follow the Zero Day Initiative on Twitter @thezdi<\/a> and on their blog<\/a>.<\/p>\n

Advantech (9)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31776: ZDI-CAN-5608,5612: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31777: ZDI-CAN-5609: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31778: ZDI-CAN-5610,5649: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31789: ZDI-CAN-5643: Zero Day Initiative Vulnerability (Advantech WebAccess HMI Designer)<\/li>\n
  • 31842: ZDI-CAN-5650: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31843: ZDI-CAN-5651: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31844: ZDI-CAN-5652: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31846: ZDI-CAN-5653: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n
  • 31847: ZDI-CAN-5654: Zero Day Initiative Vulnerability (Advantech WebAccess Node)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Microsoft (3)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31759: ZDI-CAN-5605: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n
  • 31784: HTTP: Microsoft Edge Undo Information Disclosure Vulnerability (ZDI-18-428)<\/li>\n
  • 31787: ZDI-CAN-5613: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

NetGain (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31764: TCP: NetGain Systems Enterprise Manager RMI Registry Insecure Deserialization (ZDI-17-953)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Squid (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31765: HTTP: Squid Reverse Proxy sslBumpAccessCheck Denial-of-Service Vulnerability (ZDI-18-309)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Trend Micro (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 31788: ZDI-CAN-5640: Zero Day Initiative Vulnerability (Trend Micro Endpoint Application Control)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Missed Last Week\u2019s News?<\/strong><\/p>\n

Catch up on last week\u2019s news in my weekly recap<\/a>.<\/p>\n

The post TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of May 21, 2018<\/a> appeared first on <\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 25 May 2018 12:00:45 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Not that I needed to the reminder, but the influx of emails with the subject line \u201cUpdates to our Privacy Policy\u201d from companies that I deal with (and some that I\u2019ve never heard of!) means that TODAY is the day! The General Data Protection Regulation (GDPR) has officially taken effect. Originally adopted by the European…<\/p>\n

The post TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of May 21, 2018<\/a> appeared first on <\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[18255,12116,10384,714,18522,18256,10415],"class_list":["post-12396","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-digital-vaccine","tag-gdpr","tag-network","tag-security","tag-security-management-system","tag-tippingpoint","tag-zero-day-initiative"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/12396","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=12396"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/12396\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=12396"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=12396"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=12396"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}