Security training at EGI Conference 2023
EGI CSIRT held an interesting and fruitful training and discussions at the EGI Conference 2023. First two sessions covered Threat Intelligence and SOC, and Security in OIDC deployments, followed by a hands-on security training on forensics. Threat Intelligence and the...
Blue team security training
We would like to bring your attention to the Blue team security training, which will take place online by DFN-CERT on 18th of July 2023. You can register on this link: https://connect.geant.org/2023/06/21/geant-security-blue-team-training-online-event Blue teams...
EGI-CSIRT F2F meeting in Poznan
EGI-CSIRT is meeting in person again, this time in Poznan on 19th and 20th of June 2023. Main topics of our discussions include planning future activities, trainings, incident debriefing, security challenge assessment and lessons learned.
Apache HTTP request splitting vulnerability
A security vulnerability in the Apache web server was recently announced involving HTTP request splitting with mod_rewrite and mod_proxy (CVE-2023-25690).The bug is only present when certain configurations. For more information, please see...
Security training at EGI Conference in Poznan
EGI CSIRT will organise a security training at the EGI Conference 2023 in Poznan, on the 23rd of June. The training will focus on three key areas: Threat intelligence and SOCSecurity in OIDC deploymentsSSC Forensics Walkthrough You are all welcome to join. We are...
High risk RHEL 9 buffer overflow vulnerability in Linux Kernel Netfilter
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution. For RHEL and...
