NIST SP-800-53 Rev. 5: Security and Privacy Controls for Information Systems and Organizations

The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-53 Rev.5. Security and Privacy Controls for Information Systems and Organizations. The Special Publication (SP) 800-53 provides…

Continue ReadingNIST SP-800-53 Rev. 5: Security and Privacy Controls for Information Systems and Organizations

CallStranger UPnP vulnerability affects multiple internet-facing products

The CERT Coordination Center issued a new advisory for a UPnP configuration vulnerability CVE-2020-12695 that could allow an attacker to abuse devices and send traffic to arbitrary destinations. As a result, devices connected to the internet with UPnP enabled could expose additional vulnerabilities that could lead to amplified DDoS attacks and data loss.

Continue ReadingCallStranger UPnP vulnerability affects multiple internet-facing products