/ Critical Security Issue Affecting TeamCity On-Premises (CVE-2024-23917)

https://blog.jetbrains.com/teamcity/2024/02/critical-security-issue-affecting-teamcity-on-premises-cve-2024-23917/

📢 Открытый практикум Linux by Rebrain: RAID массивы 2
⁠
• 12 Февраля (Понедельник) 20:00 МСК

Программа:

• Для чего нужна очистка метаданных mdadm?
• Как перенести данные с обычного диска на RAID1?
• Как понять был ли диск в RAID массиве mdadm?
• Как получить данные с диска из RAID1?
• Увеличение размера RAID массива

↘ Детали

Ведёт:

Андрей Буранов – Системный администратор VK Play. 10+ лет опыта работы с ОС Linux. 8+ лет опыта преподавания.
⁠

/ Fake LastPass in AppStore

Official warning:

https://blog.lastpass.com/2024/02/warning-fraudulent-app-impersonating-lastpass-currently-available-in-apple-app-store/

/ After a tip, ExpressVPN acts swiftly to protect customers

Express disclosure VPN users browsing data..

https://www.expressvpn.com/blog/windows-app-dns-requests/

/ Water Hydra Targets Traders With Microsoft Defender SmartScreen Zero-Day

https://www.trendmicro.com/en_us/research/24/b/cve202421412-water-hydra-targets-traders-with-windows-defender-s.html

Internet Shortcut Files Security Feature Bypass Vulnerability

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21412

📢 Открытый практикум DevOps by Rebrain: Работаем с бэклогом команды DevOps
⁠
Время:

• 20 Февраля (Вторник) 19:00 МСК

Программа:

• Построение процесса бэклога команды
• Подход к сквозному приоритету задач
• Контроль сроков

↘ Детали

Ведёт:

• Александр Крылов – Опыт работы в DevOps более 7 лет. Спикер конференций: DevOps conf, TeamLead conf, Highload conf. Автор курса по Haproxy на Rebrain.

/ New WiFi Authentication Vulnerabilities Discovered

One vulnerability affects Android, ChromeOS and Linux devices connecting to enterprise WiFi networks, another affects home WiFi using a Linux device as a wireless access point:

https://www.top10vpn.com/research/wifi-vulnerabilities/

/ Serious Vulnerability in the Internet Infrastructure Fundamental design flaw in DNSSEC discovered

https://www.athene-center.de/en/news/press/key-trap

/ New macOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group

https://www.bitdefender.com/blog/labs/new-macos-backdoor-written-in-rust-shows-possible-link-with-windows-ransomware-group/

📢 VDSina present new hosting project on VDSina.com

With servers based on the latest AMD EPYC processors. Processor frequency 3.55 GHz. Triple redundant NVMe storage. Internet port speed 10 Gbit/sec. Data-center located in Netherlands.

Some of services from lab.sys-adm.in are using this VPS hosting for own needs (like as Chat Prettier, Masha Banhammer or Get Telegram IDs Telegram bots). Price started from 0.16$ in day, it's great for VPN, websites, telegram bots and other needs...

You can see more details on official VDSina.com site

/ Pelmeni Wrapper: New Wrapper of Kazuar (Turla Backdoor)

- Infection Chain
- Technical analysis: Kazuar (DotNET) and Pelmeni Wrapper (Wrapper DLL)
- IoC's

https://lab52.io/blog/pelmeni-wrapper-new-wrapper-of-kazuar-turla-backdoor/

📢 Открытый практикум Linux by Rebrain: bash
⁠
Время:

• 28 Февраля (Среда) 20:00 МСК

Программа:

• Что такое командная оболочка
• Bash - удобный инструмент для работы в Linux
• Внешние и внутренние команды
• Стандартные потоки информации
• Порядок интерпретации команд

↘ Детали

Ведёт:

Андрей Буранов – Системный администратор в департаменте VK Play. 10+ лет опыта работы с ОС Linux.

/ SSH-Snake: Automatic traversal of networks using SSH private keys

SSH-Snake performs three basic tasks:

- On the current system, find any SSH private keys,
- On the current system, find any hosts or destinations (user@host) that the private keys may be accepted on,
- Attempt to SSH into all of the discovered destinations using all of the private keys discovered.

https://joshua.hu/ssh-snake-ssh-network-traversal-discover-ssh-private-keys-network-graph

/ OpenBLD.net PDP Beta Program Announce

Personal DoH Profiling (PDP), a new service that provides:

- Complete isolation of your DNS requests, ensuring that no one can track your online activity.
- Personalized DNS settings, so you can block ads, malicious websites, and other unwanted content.
- Robust security with DNSSEC, TLSv1.2, and TLSv1.3.
- Self Allow/Block lists controls and more...

Details: https://news.1rj.ru/str/openbld/56

/ Details on Apple’s Shortcuts Vulnerability: A Deep Dive into CVE-2024-23204

https://www.bitdefender.com/blog/labs/details-on-apples-shortcuts-vulnerability-a-deep-dive-into-cve-2024-23204/

/ Zyxel security advisory for multiple vulnerabilities in firewalls and APs

Zyxel has released patches addressing multiple vulnerabilities in some firewall and access point (AP) versions. Users are advised to install the patches for optimal protection:

- some firewall and AP versions could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device via FTP
- IPSec VPN feature in some firewall versions could allow an attacker to achieve unauthorized remote code execution
- LAN-based attacker to cause denial-of-service (DoS)

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps-02-21-2024

/ Announcing bpftop: Streamlining eBPF performance optimization

https://netflixtechblog.com/announcing-bpftop-streamlining-ebpf-performance-optimization-6a727c1ae2e5