{"id":11574,"date":"2018-02-23T09:00:14","date_gmt":"2018-02-23T17:00:14","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/02\/23\/news-5345\/"},"modified":"2018-02-23T09:00:14","modified_gmt":"2018-02-23T17:00:14","slug":"news-5345","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2018\/02\/23\/news-5345\/","title":{"rendered":"TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of February 19, 2018"},"content":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 23 Feb 2018 15:44:45 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Earlier this week, Trend Micro released its Security Roundup for 2017, which reveals an increase in ransomware, cryptocurrency mining and business email compromise (BEC) attempts over the past year as cybercriminals refined and targeted their attacks for greater financial return. Surprisingly, some of the biggest attacks still rely on known vulnerabilities that have available patches. Patch management and eliminating the risk associated with known vulnerabilities is a huge step in protecting against breaches or the next WannaCry, which now also means protecting against General Data Protection Regulation (GDPR) fines, which will take effect on May 25, 2018, for organizations handling EU data.<\/p>\n

To read the full report, visit https:\/\/www.trendmicro.com\/vinfo\/us\/security\/research-and-analysis\/threat-reports\/roundup<\/a>.<\/p>\n

TippingPoint Releases<\/strong><\/p>\n

Earlier this week, we released the following software releases:<\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • TippingPoint Security Management System (SMS) v5.0 patch 2<\/li>\n
  • TippingPoint Operating System (TOS) v5.0.2 for Threat Protection System (TPS)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

For the complete list of enhancements and changes, please refer to the Product Release Notes. Release Notes, other product documentation, and customer support information can be found on the Threat Management Center (TMC) web site at https:\/\/tmc.tippingpoint.com<\/a>.<\/p>\n

Zero-Day Filters<\/strong><\/p>\n

There are 11 new zero-day filters covering five vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and\/or optimize performance. You can browse the list of published advisories<\/a> and upcoming advisories<\/a> on the Zero Day Initiative<\/a> website. You can also follow the Zero Day Initiative on Twitter @thezdi<\/a> and on their blog<\/a>.<\/p>\n

Ecava (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30390: ZDI-CAN-5386: Zero Day Initiative Vulnerability (Ecava IntegraXor)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Foxit (3)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30401: ZDI-CAN-5432: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n
  • 30402: ZDI-CAN-5433,5434: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n
  • 30403: ZDI-CAN-5435: Zero Day Initiative Vulnerability (Foxit Reader)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

OMRON (4)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30399: ZDI-CAN-5405: Zero Day Initiative Vulnerability (OMRON CX-One)<\/li>\n
  • 30400: ZDI-CAN-5406: Zero Day Initiative Vulnerability (OMRON CX-One)<\/li>\n
  • 30408: ZDI-CAN-5439: Zero Day Initiative Vulnerability (OMRON CX-One)<\/li>\n
  • 30409: ZDI-CAN-5440: Zero Day Initiative Vulnerability (OMRON CX-One)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Oracle (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30384: HTTP: Oracle WebLogic Diagnosis Assistant rda_tfa_hrs Command Injection Vulnerability (ZDI-18-116)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Quest (2)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 30313: HTTP: Quest NetVault Backup Export File Overwrite Vulnerability (ZDI-18-005)<\/li>\n
  • 30352: HTTP: Quest NetVault Backup Export JSON File Overwrite Vulnerability (ZDI-18-005)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Missed Last Week\u2019s News?<\/strong><\/p>\n

Catch up on last week\u2019s news in my weekly recap<\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 23 Feb 2018 15:44:45 +0000<\/strong><\/p>\n

\"\"Earlier this week, Trend Micro released its Security Roundup for 2017, which reveals an increase in ransomware, cryptocurrency mining and business email compromise (BEC) attempts over the past year as cybercriminals refined and targeted their attacks for greater financial return. Surprisingly, some of the biggest attacks still rely on known vulnerabilities that have available patches….<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10384,714,10415],"class_list":["post-11574","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-network","tag-security","tag-zero-day-initiative"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/11574","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=11574"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/11574\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=11574"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=11574"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=11574"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}