{"id":7106,"date":"2017-03-24T07:01:24","date_gmt":"2017-03-24T15:01:24","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/03\/24\/news-897\/"},"modified":"2017-03-24T07:01:24","modified_gmt":"2017-03-24T15:01:24","slug":"news-897","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2017\/03\/24\/news-897\/","title":{"rendered":"TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of March 20, 2017"},"content":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 24 Mar 2017 13:33:43 +0000<\/strong><\/p>\n

\"\"<\/p>\n

The 10th anniversary of Pwn2Own is now in the books! It was a crazy week at the CanSecWest Conference, full of drama with the biggest contest ever with teams from Asia, Europe and North America! It was a tight race with only three points separating first and second place.<\/p>\n

In the end, we saw a record 51 bugs come through the contest, gave away $833,000 USD and 12 laptops to winners\u2026and the award for Master of Pwn.<\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 360 Security won \u201cMaster of Pwn\u201d with 63 points<\/li>\n
  • Tencent Security Team Sniper took second place with 60 points<\/li>\n
  • Chaitin Security Research Lab took third place with 26 points<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

You can catch up on the contest by visiting the following blogs:<\/p>\n\n\n\n\n
<\/td>\n\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

If you take a look at the zero-day filters we have this week, you\u2019ll see a number of them that include \u201cPwn2Own\u201d in the filter name. You guessed it! TippingPoint customers are already protected from the very vulnerabilities discovered during the contest while the affected vendors are working on a patch.<\/p>\n

It was a grueling contest this year, but definitely one for the record books, with virtual machine escapes and a hacked touch bar. Brian Gorenc, who leads the Zero Day Initiative team, gives his perspective<\/a> on the past 10 years of Pwn2Own and what the future holds. I can\u2019t wait to see what happens next year!<\/p>\n

Virtual Threat Protection System (vTPS) v4.2.0 is Now Available!<\/strong><\/p>\n

Earlier this week, we released version 4.2.0 build 4654 for our TippingPoint Virtual Threat Protection System (vTPS).<\/p>\n

vTPS v4.2.0 includes the following:<\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • Introduction of a single-disk architecture with a user disk partition.<\/li>\n
  • Reduced computer requirements (1 less core is now required for deployment)<\/li>\n
  • When configuring RADIUS, you can now set the Authentication Protocol.<\/li>\n
  • Flexibility to upgrade inspection throughput from 500Mbps to 1Gpbs.<\/li>\n
  • In addition, the v4.2.0 vTPS release inherits features of TPS v4.2.0, including:\n
      \n
    • The ability to collect a client’s true IP address.<\/li>\n
    • The ability to identify the HTTP URI and hostname information associated with an event.<\/li>\n
    • Enhanced SNMP support.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

For a complete list of enhancements and changes, customers can refer to the product Release Notes. For questions or technical assistance on any TippingPoint product, customers can contact the TippingPoint Technical Assistance Center (TAC).<\/p>\n

Adobe Security Bulletins Update<\/strong><\/p>\n

This week\u2019s Digital Vaccine (DV) package includes coverage for the Adobe Security Bulletins released on or before March 14, 2017. The following table maps TippingPoint filters to the Adobe Bulletins:<\/p>\n

\n\n\n\n\n\n\n\n\n\n\n
Bulletin #<\/strong><\/td>\nCVE #<\/strong><\/td>\nDigital Vaccine Filter #<\/strong><\/td>\nStatus<\/strong><\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-2997<\/td>\n27499<\/td>\n<\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-2998<\/td>\n27500<\/td>\n<\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-2999<\/td>\n27501<\/td>\n<\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-3000<\/td>\n<\/td>\nInsufficient Information<\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-3001<\/td>\n27493, 27511<\/td>\n<\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-3002<\/td>\n27502<\/td>\n<\/td>\n<\/tr>\n
APSB17-07<\/td>\nCVE-2017-3003<\/td>\n27503<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n

 <\/p>\n

Zero-Day Filters<\/strong><\/p>\n

There are 27 new zero-day filters covering six vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and\/or optimize performance. You can browse the list of published advisories<\/a> and upcoming advisories<\/a> on the Zero Day Initiative<\/a> website.<\/p>\n

Adobe (5)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 27520: PWN2OWN ZDI-CAN-4588: Zero Day Initiative Vulnerability (Adobe Reader)<\/li>\n
  • 27521: PWN2OWN ZDI-CAN-4589: Zero Day Initiative Vulnerability (Adobe Reader)<\/li>\n
  • 27522: PWN2OWN ZDI-CAN-4575: Zero Day Initiative Vulnerability (Adobe Reader DC)<\/li>\n
  • 27533: PWN2OWN ZDI-CAN-4601: Zero Day Initiative Vulnerability (Adobe Flash)<\/li>\n
  • 27534: PWN2OWN ZDI-CAN-4607: Zero Day Initiative Vulnerability (Adobe Flash)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Apple (10)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 27518: PWN2OWN ZDI-CAN-4578: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27523: PWN2OWN ZDI-CAN-4591: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27524: PWN2OWN ZDI-CAN-4593: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27525: PWN2OWN ZDI-CAN-4594: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27526: PWN2OWN ZDI-CAN-4595: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27527: PWN2OWN ZDI-CAN-4596: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27528: ZDI-CAN-4597: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27529: ZDI-CAN-4598: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27535: PWN2OWN ZDI-CAN-4623: Zero Day Initiative Vulnerability (Apple Safari)<\/li>\n
  • 27539: PWN2OWN ZDI-CAN-4613: Zero Day Initiative Vulnerability (Apple Safari)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Google (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 27519: ZDI-CAN-4587: Zero Day Initiative Vulnerability (Google Chrome)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Mozilla (1)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 27537: PWN2OWN ZDI-CAN-4620: Zero Day Initiative Vulnerability (Mozilla Firefox)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Microsoft (6)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 27532: PWN2OWN ZDI-CAN-4584: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n
  • 27536: PWN2OWN ZDI-CAN-4611: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n
  • 27538: PWN2OWN ZDI-CAN-4618: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n
  • 27540: PWN2OWN ZDI-CAN-4625: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n
  • 27541: PWN2OWN ZDI-CAN-4628: Zero Day Initiative Vulnerability (Microsoft Edge)<\/li>\n
  • 27542: PWN2OWN ZDI-CAN-4629: Zero Day Initiative Vulnerability (Microsoft Edge)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Trend Micro (4)<\/em><\/strong><\/p>\n\n\n\n\n
<\/td>\n\n
    \n
  • 27507: ZDI-CAN-4404: Zero Day Initiative Vulnerability (Trend Micro SafeSync for Enterprise)<\/li>\n
  • 27508: ZDI-CAN-4408: Zero Day Initiative Vulnerability (Trend Micro SafeSync for Enterprise)<\/li>\n
  • 27509: ZDI-CAN-4409: Zero Day Initiative Vulnerability (Trend Micro SafeSync for Enterprise)<\/li>\n
  • 27512: ZDI-CAN-4410: Zero Day Initiative Vulnerability (Trend Micro SafeSync for Enterprise)\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Missed Last Week\u2019s News?<\/strong><\/p>\n

Catch up on last week\u2019s news in my weekly recap<\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Elisa Lippincott (TippingPoint Global Product Marketing)| Date: Fri, 24 Mar 2017 13:33:43 +0000<\/strong><\/p>\n

\"\"The 10th anniversary of Pwn2Own is now in the books! It was a crazy week at the CanSecWest Conference, full of drama with the biggest contest ever with teams from Asia, Europe and North America! It was a tight race with only three points separating first and second place. In the end, we saw a…<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10384,714,10415],"class_list":["post-7106","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-network","tag-security","tag-zero-day-initiative"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/7106","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=7106"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/7106\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=7106"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=7106"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=7106"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}