Very interesting read from Team82 about the DICOM attack surface and some cool vulns found in a popular DICOM library!

Data on vulnerable Ivanti Connect Secure devices now available on our Dashboard, for example World map: dashboard.shadowserver.org/statistics/com… Tree map: dashboard.shadowserver.org/statistics/com… Tracker: dashboard.shadowserver.org/statistics/com…

I reproduced the full chain of Ivanti Connect Secure CVE-2023-46805 (auth bypass) + CVE-2024-21887 (RCE) 🥳 While it is mentioned in the advisory, it's worth noting that 21887 is multiple command injection vulns under one CVE. I counted 5 before I got bored looking 😆

As of 2024-01-18 we are scanning for NextGen Healthcare Mirth Connect appliances vulnerable to CVE-2023-43208 (pre-auth RCE). We see 441 vulnerable (2024-01-22 scan). Data shared in shadowserver.org/what-we-do/net… Make sure to upgrade to latest version: github.com/nextgenhealthc…

Noice 👌 blog.projectdiscovery.io/announcing-cve…

Scan for Jenkins < 2.441 - Arbitrary File Read (CVE-2024-23897) using nuclei templates. Vulnerability Advisory -jenkins.io/security/advis… Vulnerability Analysis - sonarsource.com/blog/excessive… by Sonar Research Nuclei Template - cloud.projectdiscovery.io/@sandeep/nqTES… #hackwithautomation #bugbounty

Wowzers...

Applications for our UK Cyber Security Internship are now open, so why not spend the summer developing your hacking skills and gaining hands-on experience working with our cyber security specialists? Apply by March 15! emp.jobylon.com/jobs/217281-wi…

Snyk has discovered a new container breakout, known as CVE-2024-21626 Check out WithSecure Labs for more about the proof of concept and its demos for the docker / kubernetes / CI/CD environments: labs.withsecure.com/publications/r…

Finally got round to publishing the tool and accompanying blog post on my HL7/medical device research, presented at DC31 labs.withsecure.com/publications/h… github.com/withSecurelabs… #healthcare #medtech #DEFCON DEF CON

Made it to Patrick Gray news 🙊 news.risky.biz/risky-biz-news…

4 days to go! Join our webinar in which we will: 💬 Discuss the importance of exposure management to mid-market security professionals 👀 Look into attack surface issues and exposure management’s role 🔎 Explore risk appetite and regulation issues 🖋withsecure.com/en/whats-new/e…

hl7magic: A Burp extension to allow for easy modification of HL7 messages sent to and from medical devices. dlvr.it/T67qFz #cyber #threathunting #infosec

It's World Patient Safety Day 2024! 🏥 This years focus- Improving Diagnosis for #PatientSafety. You guys know we're dedicated to innovation & cybersecurity to enhance #healthcare safety! Read: who.int/news-room/even… #WorldPatientSafetyDay #Cybersecurity #HealthcareInnovation

Thanks to everyone that came along to my talk 44CON, you can find my blog post on the topic here: labs.withsecure.com/publications/h… and HL7Magic here: github.com/WithSecureLabs…

Katie Inns, S-RM's Head of Attack Surface Management (ASM), shares her insight into the importance of ASM in keeping organisations safe from cyber attacks. hubs.li/Q02XWwt70 #AttackSurfaceManagement #Cybersecurity #Cloud #ShadowIT

How many of you realize how easy it is to get popped by running a random Nuclei by ProjectDiscovery templates? Even signed ones aren’t safe – it’s only a matter of time before this becomes a real attack vector 😏 PoC for CVE-2024-43405 id: benign-template info: name: Valid Template Example