TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 21, 2018

Not that I needed to the reminder, but the influx of emails with the subject line “Updates to our Privacy Policy” from companies that I deal with (and some that I’ve never heard of!) means that TODAY is the day! The General Data Protection Regulation (GDPR) has officially taken effect. Originally adopted by the European Union (EU) in 2016 in an effort to protect EU citizen data in a consistent manner, the regulation gave companies two years to achieve GDPR compliance. So everyone is 100 percent compliant, right? C’mon, you had two years to get ready.

Unfortunately, as everyone suspected, it’s not even close. According to a survey conducted last month by the Ponemon Institute to over 1,000 companies in the United States and Europe, half of the companies will not meet the deadline or didn’t know if they would. But that’s just one side of the story. Reuters surveyed 24 European regulators earlier this month and 17 them said they didn’t have the funding or resources in place to respond to GDPR complaints. It will be interesting to see how GDPR plays out and how it will be enforced. Will my favorite shoe store stop sending me sale notices? Will it mean the death of the e-newsletter? Only time will tell.

If you need information on how to prepare for GDPR, Trend Micro has a resource page that includes a checklist, case studies and other key resources. You can even learn from our experiences on how we prepared for GDPR. Get the latest information here: https://www.trendmicro.com/en_us/business/capabilities/solutions-for/gdpr-compliance.html

New Product Version Release

Earlier this week, we released version 5.0.1 build 108768 of the TippingPoint Security Management System (SMS). For a complete list of enhancements and changes, customers can refer to the product Release Notes located on the Threat Management Center (TMC) website. For questions or technical assistance, customers can contact the Trend Micro TippingPoint Technical Assistance Center (TAC).

Zero-Day Filters

There are 15 new zero-day filters covering five vendors in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative website. You can also follow the Zero Day Initiative on Twitter @thezdi and on their blog.

Advantech (9)

  • 31776: ZDI-CAN-5608,5612: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31777: ZDI-CAN-5609: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31778: ZDI-CAN-5610,5649: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31789: ZDI-CAN-5643: Zero Day Initiative Vulnerability (Advantech WebAccess HMI Designer)
  • 31842: ZDI-CAN-5650: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31843: ZDI-CAN-5651: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31844: ZDI-CAN-5652: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31846: ZDI-CAN-5653: Zero Day Initiative Vulnerability (Advantech WebAccess Node)
  • 31847: ZDI-CAN-5654: Zero Day Initiative Vulnerability (Advantech WebAccess Node)

Microsoft (3)

  • 31759: ZDI-CAN-5605: Zero Day Initiative Vulnerability (Microsoft Edge)
  • 31784: HTTP: Microsoft Edge Undo Information Disclosure Vulnerability (ZDI-18-428)
  • 31787: ZDI-CAN-5613: Zero Day Initiative Vulnerability (Microsoft Edge)

NetGain (1)

  • 31764: TCP: NetGain Systems Enterprise Manager RMI Registry Insecure Deserialization (ZDI-17-953)

Squid (1)

  • 31765: HTTP: Squid Reverse Proxy sslBumpAccessCheck Denial-of-Service Vulnerability (ZDI-18-309)

Trend Micro (1)

  • 31788: ZDI-CAN-5640: Zero Day Initiative Vulnerability (Trend Micro Endpoint Application Control)

Missed Last Week’s News?

Catch up on last week’s news in my weekly recap.

Read More HERE