ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Ouvir "Cyber Morning Call - #107 - 30/06/2022"
Sinopse do Episódio
[Referências do Episódio]
- YTStealer Malware: “YouTube Cookies! Om Nom Nom Nom” - https://www.intezer.com/blog/research/ytstealer-malware-youtube-cookies/
- Unrar Path Traversal Vulnerability affects Zimbra Mail - https://blog.sonarsource.com/zimbra-pre-auth-rce-via-unrar-0day/
- Mozilla Foundation Security Advisory 2022-24 - https://www.mozilla.org/en-US/security/advisories/mfsa2022-24/
- Smash-and-grab: AstraLocker 2.0 pushes ransomware direct from Office docs - https://blog.reversinglabs.com/blog/smash-and-grab-astralocker-2-pushes-ransomware-direct-from-office-docs
- CVE-2022-28219: Unauthenticated XXE to RCE and Domain Compromise in ManageEngine ADAudit Plus - https://www.horizon3.ai/red-team-blog-cve-2022-28219/
[Ficha técnica]
Roteiro e apresentação: Carlos Cabral
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia
Projeto gráfico: Julian Prieto
- YTStealer Malware: “YouTube Cookies! Om Nom Nom Nom” - https://www.intezer.com/blog/research/ytstealer-malware-youtube-cookies/
- Unrar Path Traversal Vulnerability affects Zimbra Mail - https://blog.sonarsource.com/zimbra-pre-auth-rce-via-unrar-0day/
- Mozilla Foundation Security Advisory 2022-24 - https://www.mozilla.org/en-US/security/advisories/mfsa2022-24/
- Smash-and-grab: AstraLocker 2.0 pushes ransomware direct from Office docs - https://blog.reversinglabs.com/blog/smash-and-grab-astralocker-2-pushes-ransomware-direct-from-office-docs
- CVE-2022-28219: Unauthenticated XXE to RCE and Domain Compromise in ManageEngine ADAudit Plus - https://www.horizon3.ai/red-team-blog-cve-2022-28219/
[Ficha técnica]
Roteiro e apresentação: Carlos Cabral
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia
Projeto gráfico: Julian Prieto
In God we trust