[HackerNews] Digital Signature Spoofing Flaws Uncovered in OpenOffice and LibreOffice

The maintainers of LibreOffice and OpenOffice have shipped security updates to their productivity software to remediate multiple vulnerabilities that could be weaponized by malicious actors to alter documents to make them appear as if they are digitally signed by a trusted source.
The list of the three flaws is as follows —

CVE-2021-41830 / CVE-2021-25633 – Content and Macro Manipulation with

Source: Read More (The Hacker News)

You might be interested in …

[ThreatPost] Porn Problem: Adult Ads Persist on US Gov’t, Military Sites

All posts, ThreatPost

Cities, states, federal and military agencies should patch the Laserfiche CMS post-haste, said the security researcher whose jaw dropped at 50 sites hosting porn and Viagra spam. Source: Read More (Threatpost)

Read More

[ZDNet] This major ransomware attack was foiled at the last minute. Here’s how they spotted it

All posts, ZDNet

Cybersecurity researchers detail what they found during an investigation into an attempted ransomware attack – and what other organisations can learn to avoid becoming victims. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] Six Malicious Linux Shell Scripts Used to Evade Defenses and How to Stop Them

All posts, ThreatPost

Uptycs Threat Research outline how malicious Linux shell scripts are used to cloak attacks and how defenders can detect and mitigate against them. Source: Read More (Threatpost)

Read More