all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

January 2024: Critical WebRTC, CUCM and SIP ALG security fixes - fuzz it all and disable stuff

Add to bookmarks
Jan. 31, 2024, 3:14 p.m. | info@enablesecurity.com (Enable Security)

Real-time communications security on Communication Breakdown - Real-Time Communications Security www.rtcsec.com

Fresh new year, fresh VoIP and WebRTC security news! Welcome to this newsletter, write back if you find it useful.
In this edition, we cover:
TLS key logs, Kamailio and security tools Chromium’s WebRTC vulnerability CVE-2023-7024 The usual warning about SIP ALG Critical vulnerabilities fixed in Cisco’s Unified Communications products RTCSec newsletter is a free periodic newsletter bringing you commentary and news around VoIP and WebRTC security. We cover both defensive and offensive security as they relate to Real-time Communications.

alg back chromium critical cve cve-2023-7024 find fixes fuzz january january 2024 key logs newsletter new year security security tools sip tls tools voip vulnerability warning webrtc

Visit resource

More from www.rtcsec.com / Real-time communications security on Communication Breakdown - Real-Time Communications Security

March 2024: Webex leak, WhatsApp and Apple WebRTC vulnerabilities 1 month ago | www.rtcsec.com
apple call end exploits +18
February 2024: manipulating audio using LLM, malware using CPaaS and WebRTC security 1 month, 4 weeks ago | www.rtcsec.com
audio community conversations cpaas +20
January 2024: Critical WebRTC, CUCM and SIP ALG security fixes - fuzz it all and … 2 months, 4 weeks ago | www.rtcsec.com
alg back chromium critical +20
December 2023: Round-up of this year's VoIP and WebRTC security news, and DTLS hello race … 4 months ago | www.rtcsec.com
community december dtls emails +10
November 2023: Advisories for VoIP systems and devices, WebRTC privacy and spying on your calls 4 months, 4 weeks ago | www.rtcsec.com
arm asterisk caught communications +21
October 2023: security theatre and PBX hacking, plus last month's advisories 6 months ago | www.rtcsec.com
con def def con end +11
September 2023: Security advisories, SIP & DTLS-SRTP interoperability and 5G infra attacks 6 months, 4 weeks ago | www.rtcsec.com
amp attack attacks delivery +20
August 2023: Join OpenSIPit, learn about Zoom, Skype vulnerabilities, and more 7 months, 3 weeks ago | www.rtcsec.com
august holidays hope latest +7
July 2023: VoIP and WebRTC attack surface, pentesting for 2023 and VoIP DDoS attacks 9 months ago | www.rtcsec.com
attack attacks attack surface back +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Lead Technical Product Manager - Threat Protection

@ Mastercard | Remote - United Kingdom
View on infosec-jobs.com

Data Privacy Officer

@ Banco Popular | San Juan, PR
View on infosec-jobs.com

GRC Security Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Warrington, United Kingdom
View on infosec-jobs.com

Privacy Engineer, Technical Audit

@ Meta | Menlo Park, CA
View on infosec-jobs.com
View more jobs