Network Security News Summary for Friday October 14th, 2022
SANS Internet Storm Center's Daily Network Security News Podcast · Johannes B. Ullrich
October 13, 20225m 57s
Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Alchimist/Insekt C&C; vm2 vuln; npm package disclosure; Zimbra Patch Alchimist Offensive Framework https://blog.talosintelligence.com/2022/10/alchimist-offensive-framework.html#more VM2 Sandbox Vulnerability https://www.oxeye.io/blog/vm2-sandbreak-vulnerability-cve-2022-36067 private npm package disclosure https://blog.aquasec.com/private-packages-disclosed-via-timing-attack-on-npm Zimbra Updates https://wiki.zimbra.com/wiki/Zimbra_Releases/9.0.0/P27#Security_Fixes keywords: zimbra, npm; packages; vm2; sandbox; alchimist; insekt