Description
[Referências do Episódio]
Zero-Day Exploitation of Unauthenticated Remote Code Execution Vulnerability in GlobalProtect (CVE-2024-3400) - https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/
CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect - https://security.paloaltonetworks.com/CVE-2024-3400
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 - https://unit42.paloaltonetworks.com/cve-2024-3400/
XenServer and Citrix Hypervisor Security Update for CVE-2023-46842, CVE-2024-2201 and CVE-2024-31142 - https://support.citrix.com/article/CTX633151/xenserver-and-citrix-hypervisor-security-update-for-cve202346842-cve20242201-and-cve202431142
Credit Card Skimmer Hidden in Fake Facebook Pixel Tracker - https://blog.sucuri.net/2024/04/credit-card-skimmer-hidden-in-fake-facebook-pixel-tracker.html
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia
[Referências do Episódio]
Microsoft May 2024 Security Updates - https://msrc.microsoft.com/update-guide/releaseNote/2024-May
CVE-2024-30040 - Windows MSHTML Platform Security Feature Bypass Vulnerability - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30040
CVE-2024-30051 -...
Published 05/15/24
[Referências do Episódio]
Apple security releases - https://support.apple.com/en-us/HT201222
Stable Channel Update for Desktop - Monday, May 13, 2024 - https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_13.html
Leveraging DNS Tunneling for Tracking and Scanning -...
Published 05/14/24