We are still over a week away from Patch Tuesday, yet third parties are filling the gap with numerous security releases, with a high-profile vulnerability dropping this week.

In the news, IBM Security released a report covering the trends of cyberattacks detailing an interesting trend away from ransomware. ZDNet details the report, where the previously profitable practice of ransomware is being traded off for “cryptojacking” in which an attacker instead leverages the endpoint’s computing power to mine cryptocurrencies. Make sure to monitor endpoint resources as this load on endpoints can be hard to detect.

Security Releases

WinRAR leads this week with a fix for the recently discovered 19-year-old ACE vulnerability, where a specially crafted .ACE file renamed to .RAR could execute malicious code on the endpoint. Version 5.70 is detailed in WinRAR’s release notes with numerous fixes, including four CVEs. The urgency around this patch has elevated as well with BleepingComputer covering the first active malspam campaign, banking on the fact that so many endpoints contain this unpatched product. New languages are being released daily so make sure to deploy this patch when your affected language is available.

All four Node.JS branches have updated this week with a Denial of Service vulnerability shared between all branches. While these vulnerabilities are not too severe, this product can be present in critical production environments, so make sure to add these to your next cycle. A summary of the releases and applicable CVEs can be found below:

Version and Branch

Vulnerabilities

11.10.1 (Current)

CVE-2019-5737

10.15.2 (LTS "Dubnium")

CVE-2019-5737

8.15.1 (LTS "Carbon")

CVE-2019-1559,CVE-2019-5737

6.17.0 (LTS "Boron")

CVE-2019-1559,CVE-2019-5737,CVE-2019-5739

Third-Party Updates

Although WinRAR tops the stack of third parties, other vendors released non-security updates for the week. The titles below may contain valuable stability fixes as well as other undisclosed vulnerability fixes:

Software Title

Ivanti ID

Ivanti KB

Google Drive File Stream 29.1.85.2056

GDFS-011

QFS291852056

GOM Player 2.3.38.5300

GOM-023

QGOM23385300

GoodSync 10.9.25

GOODSYNC-111

QGS109255

Nitro Pro 12.10.1.487

NITRO-022

QNITRO12101487

Nitro Pro Enterprise 12.10.1.487

NITROE-003

QNITROE12101487

NVivo 12.3.0.599

NVIVO-003

QNVIVO1230599

Opera 58.0.3135.79

OPERA-202

QOP580313579

Microsoft Power BI Desktop 2.66.5376.2521

PBID-050

QBI26653762521

Royal TS 5.00.61429.0

RTS5-006

QRTS500614290

Skype 8.40.0.70

SKYPE-153

QSKY840070

Thunderbird 60.5.2

TB19-6052

QTB6052

TeamViewer 14.1.18533.0

TVIEW-044

QTVIEW141185330

WinSCP 5.13.8

WINSCP-024

QWINSCP5138

Zoom Client 4.3.46499

ZOOM-019

QZOOM4346499

Reduce risks of cybersecurity threats