Blogue sur la sécurité

The Mass Effect: Opportunistic Workers Drift into Cybercrime

Aug 3, 2022

Birds sitting together in the air passing messagesThis blog post summarizes the results of a study that sheds light on ordinary workers conducting benign IT tasks, such as developing websites or translating texts, that contribute to cybercrime activities. The researchers from multiple organizations, including the GoSecure Titan Labs team, conducted a thematic analysis and used machine learning, as well as statistical tests on several datasets, to extract a general understanding of these workers and their mass effect.

read more

Tableau Server Leaks Sensitive Information From Reflected XSS

Jul 13, 2022

Tableau logoGoSecure Titan Labs has identified a vulnerability within the Tableau Server that could allow malicious actors to extract sensitive data from the application. Tableau Server is an analytics platform owned by Salesforce used to see and understand data. This application is often hosted on premises to explore sensitive data in a trusted environment. According to a Shodan search which returned more than 18,000 results for this product, this application is widely used by companies to analyze data.

read more

XSS Vulnerability in IBM Content Navigator (CVE-2020-4757)

Jun 21, 2022

Navigator ToolGoSecure Titan Labs discovered a stored cross-site scripting (XSS) vulnerability in IBM Content Navigator. Users are strongly advised to upgrade to version 3.0.9 or above. This blog post details the vulnerability, its impact and provides a proof of concept for exploitation.

read more

Security Advisory: Multiple Vulnerabilities Impact 3CX Phone System

May 31, 2022

GoSecure Titan Lab investigation found that 3CX phone system servers were vulnerable to two different attacks: authenticated command injection and privilege escalation. When combined with the 3CX cloud free trial, these vulnerabilities could allow an attacker to escape the restricted terminal and gain a “free” virtual server.

read more

Catégories

SOLUTIONS
Détection et réponse gérées Titan
Services professionnels
Technologies de sécurité
Services de sécurité gérée
POURQUOI GOSECURE?
Pourquoi MDR comparé à MSSP?
La plateforme GoSecure Titan
Intelligence sur les menaces
Validation de l’industrie
RESSOURCES
Dans l’actualité
Communiqués de presse
Événements
Blogue de sécurité
COMPAGNIE
Leadership
Conseil d’administration
Carrières
Suivez-nous:   
SOLUTIONS
Détection et réponse gérées Titan
Services professionnels
Technologies de sécurité
Services de sécurité gérée
POURQUOI GOSECURE?
Pourquoi MDR comparé à MSSP?
La plateforme GoSecure Titan
Intelligence sur les menaces
Validation de l’industrie
RESSOURCES
Dans l’actualité
Communiqués de presse
Événements
Blogue de sécurité
COMPAGNIE
Leadership
Conseil d’administration
Carrières
Suivez-nous:   
Détection et réponse gérées Titan
Antivirus de nouvelle génération
Détection et réponse sur les terminaux
Détection et réponse sur le réseau
Détection et réponse sur les boîtes de messagerie
Détection et réponse face aux menaces internes
Gestion des pare-feu
Gestion des SIEM
La gestion des vulnérabilités en tant que service
GoSecure Titan
Logiciel Titan
Sécurité de la messagerie
Sécurité Web
Boîte à outils «Responder PRO Forensics»
Services professionnels
Services de préparation aux brèches
Les services-conseils personnalisés en cybersécurité
Évaluation de la cybersécurité
Services de réponse aux incidents
Services des équipes « Red & Purple »
Services de tests d'intrusion
Services de conformité et d'audit
Évaluation de la compromission de la sécurité
Technologies tierces

Pin It on Pinterest