New Video from @internetstormcenterstormca2350 Discusses Critical Cybersecurity Topics

In this new video from the SANS Internet Storm Center, Johannes Ullrich discusses several crucial topics related to cybersecurity. The first point addressed concerns unintentional open redirects provided by Google, which can be exploited for phishing attacks. Ullrich explains that these redirects come from links on Google Maps pages to hotel websites. Although these links initially appear secure with URL and token parameters, the token does not provide cryptographic assurance, allowing attackers to redirect users to phishing pages. Google, for its part, suggests that the best defense is not to trust Google, a recommendation that, while solid, can be difficult to apply in practice. To avoid these open redirects on your own websites, Ullrich advises creating a whitelist of authorized URLs and adding cryptographic identifiers to ensure the authenticity of the links. The video also covers recent security updates, notably those from Adobe. Adobe has fixed 13 different products, with particular attention to ColdFusion, a tool commonly used to create public websites. The corrected vulnerabilities include arbitrary file read and code execution flaws, making these updates crucial for security. Ullrich also mentions a vulnerability in Samsung MagicInfo 9, a content management system used for advertising displays. Although Samsung has released an update, the description of the vulnerability remains brief and lacking in detail, which can cause confusion. He emphasizes the importance of clear and detailed descriptions to avoid such problems. Finally, the video discusses a critical vulnerability in Ivanti Neurons for ITSM, which allows authentication bypass. Ivanti recommends limiting access to the web server behind Ivanti Neurons by IP addresses or domain names to reduce the risk of compromise, although the update also fixes the underlying vulnerability. These discussions highlight the importance of vigilance and regular updates in the field of cybersecurity. The practical advice provided can be directly applied to improve the security of systems and websites.