BOLO: ACTIVE ADVERSARY PURCHASING LOOK-ALIKE DOMAINS TARGETING INDUSTRIAL MANUFACTURING, SHIPPING, AND LOGISTICS INDUSTRIES
BE ON THE LOOKOUT – to our peers in the industrial manufacturing, shipping, and logistics industries, there is an active adversary purchasing look-alike domains to execute business email compromise against you.
Pathfynder's Bryan Clements co-authored a new CVE release: CVE-2020-12855, "NEProfile - Host Header Injection."
A host header injection vulnerability has been discovered in SecZetta's NEProfile product. Authenticated remote adversaries can poison the host header resulting in the attacker controlling response 302 execution flow. The issue affects version 3.3.11 and has not been tested on other versions of the product.
Nice work, Bryan. More to follow!