[Referências do Episódio]

- 2023-08 Out-of-Cycle Security Bulletin: Junos OS: SRX Series and EX Series: Multiple vulnerabilities in J-Web can be combined to allow a preAuth Remote Code Execution - https://supportportal.juniper.net/s/article/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution

- CVE-2023-36844 , CVE-2023-36845 , CVE-2023-36846 , CVE-2023-36847 - https://github.com/watchtowrlabs/juniper-rce_cve-2023-36844

- CVE-2023-36844 And Friends: RCE In Juniper Devices - https://labs.watchtowr.com/cve-2023-36844-and-friends-rce-in-juniper-firewalls/

- THREAT ACTORS STARTED EXPLOITING JUNIPER FLAWS SHORTLY AFTER POC RELEASE - https://securityaffairs.com/150087/hacking/juniper-poc-exploits-attacks.html

- An Ongoing Open Source Attack Reveals Roots Dating Back To 2021  - https://checkmarx.com/blog/an-ongoing-open-source-attack-reveals-roots-dating-back-to-2021/ 

- BadBazaar espionage tool targets Android users via trojanized Signal and Telegram apps - https://www.welivesecurity.com/en/eset-research/badbazaar-espionage-tool-targets-android-users-trojanized-signal-telegram-apps/ 

- Multiple Threats Target Adobe ColdFusion Vulnerabilities - https://www.fortinet.com/blog/threat-research/multiple-threats-target-adobe-coldfusion-vulnerabilities

- Security updates available for Adobe ColdFusion | APSB23-40 - https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html

- Security updates available for Adobe ColdFusion | APSB23-41 - https://helpx.adobe.com/security/products/coldfusion/apsb23-41.html

- Security updates available for Adobe ColdFusion | APSB23-47 - https://helpx.adobe.com/security/products/coldfusion/apsb23-47.html 

Roteiro e apresentação: Carlos Cabral

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia