DDS Company’s Post

DDS security systems have integrated mifare DESFire for STiD readers in DDS Amadeus8 soft. Communication between DDS controller, the interface and the readers is managed by STiD SSCP protocol. STiD SECard application allows creating a badge configuration, including the CMK key, the AMK key of the application and its AID identifier and the definition of 2 datafiles with their keys in which the badge codes will be saved.

The new version of SAC 4000 v24.03 Software is here! Now you can configure up to 10 global Anti Passback zones, operating regardless of the controller models. 🚨IMPORTANT 🚨 Remember, to have this function, the controllers must be continuously connected to the software. Enhance your security with SAC 4000! 🚀🔒 Would you like to know more? Contact us! #Security #Technology #Update #AccessControl #Innovation

Binary SMS can be used to target the SIM toolkit application and to retrieve the subscriber precise location. The vulnerability can be exploited if the SIM toolkit is installed and enabled on the SIM card and the card is vulnerable and accepting binary messages without security attributes. DCS with Message class 2 observed supported with TP-PID 127 for the reported vulnerability which on further investigation and decode reveals the binary SMS was targeted to SIM FILE SYSTEM. The vulnerability could be possibly further exploited by executing other SIM toolkit commands besides this reported case. The vulnerability has been detected and used from a Global Title with a bad reputation involved in geolocation activities by continuously exploiting various SS7 messages to perform subscriber tracking. Reference: FS.42 v1

🔐 Elevate your security game with HandyTrac Key Control! 🚀 In a world where key management is crucial, HandyTrac ensures you're steps ahead. Say goodbye to manual tracking and hello to streamlined, secure key management. 💼🗝️ Learn why HandyTrac is a game-changer! www.handytrac.com #KeyControl #SecurityFirst #InnovativeSolutions

Johnson Controls has disclosed a high-rated vulnerability in their iStar Pro Door Controller product (CVE-2024-32752). This vulnerability, with a CVSS score of 8.8, enables attackers to execute a machine-in-the-middle (MITM) attack. To delve deeper into this critical issue and discover how to identify potentially vulnerable systems with runZero, check out the blog ⤵ https://lnkd.in/gAvqj9FJ

Prevention is better than cure so why do we still speak to many security people who commission 'one' pen test a year, and then spend wayyyyy more on XDR and MSSP services? It's easier and cheaper to close your doors and windows (more than once a year...) than it is to install a pricey burglar alarm system... The Incenter platform, from OccamSec, offers low cost/high value 'continuous pen testing' #continuouspentesting #vulnerablitymanagement #pentesting

Computer Care You Can Count On[Servicing, Repair, Troubleshooting, Upgrading, Updating, Virus Removal, Activation] @Mulls-Tech Tracking Tech Turmoil With PRECISION

Digital Security Safe With Electronic Lock

I'm analyzing an EDR to identify the code responsible for changing memory protection to `PAGE_EXECUTE_READ | PAGE_GUARD`, which applies the `PAGE_GUARD` flag to monitor execution or read access in a specific memory area. A disassembly snippet from one of the EDR DLLs suggests that `VirtualProtect` is called to apply this protection. Specifically, the value `0x120` seems to consist of `0x20`, representing `PAGE_EXECUTE_READ`, and `0x100`, representing `PAGE_GUARD`. This implies that `0x120` corresponds to the combination of `PAGE_EXECUTE_READ | PAGE_GUARD`. Does this interpretation align with the disassembly? Is the conclusion that `0x120` represents this memory protection combination correct? #redteam #infosec #itsec #itsecurity #reversing

🚨 High risk vulnerability (CVE-2024-50361) discovered in Advantech devices! The issue is related to OS Command Injection (CWE-78) due to improper sanitization of parameters in the 'certificate_file_remove' API. This could potentially allow an attacker to execute arbitrary commands. Stay safe and update your devices! #Advantech #APIsecurity #OWASP #CWE78 https://lnkd.in/epYV9nsP