βΌ CVE-2022-1987 βΌ
π Read
via "National Vulnerability Database".
Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32265 βΌ
π Read
via "National Vulnerability Database".
qDecoder before 12.1.0 does not ensure that the percent character is followed by two hex digits for URL decoding.π Read
via "National Vulnerability Database".
βΌ CVE-2022-1988 βΌ
π Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - Generic in GitHub repository neorazorx/facturascripts prior to 2022.09.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32270 βΌ
π Read
via "National Vulnerability Database".
In Real Player 20.0.7.309 and 20.0.8.310, external::Import() allows download of arbitrary file types and Directory Traversal, leading to Remote Code Execution. This occurs because it is possible to plant executables in the startup folder (DLL planting could also occur).π Read
via "National Vulnerability Database".
βΌ CVE-2022-32268 βΌ
π Read
via "National Vulnerability Database".
StarWind SAN and NAS v0.2 build 1914 allow remote code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32269 βΌ
π Read
via "National Vulnerability Database".
In Real Player 20.0.8.310, the G2 Control allows injection of unsafe javascript: URIs in local HTTP error pages (displayed by Internet Explorer core). This leads to arbitrary code execution.π Read
via "National Vulnerability Database".
π’ Second ransomware group attacks Costa Rica π’
π Read
via "ITPro".
The countryβs health service has had its systems affected by the new attackπ Read
via "ITPro".
IT PRO
Second ransomware group attacks Costa Rica | IT PRO
The countryβs health service has had its systems affected by the new attack
π’ Zscaler and Siemens team up to provide all-in-one digital transformation solution π’
π Read
via "ITPro".
Zscaler-powered zero trust OT security platform is now available globally via Siemensπ Read
via "ITPro".
IT PRO
Zscaler and Siemens team up to provide all-in-one digital transformation solution | IT PRO
Zscaler-powered zero trust OT security platform is now available globally via Siemens
π’ GitHub Enterprise Server 3.5 is equipped with a horde of new security protections π’
π Read
via "ITPro".
Admins are also given more controls to ensure the smooth running of servers, be it on-prem or in the cloudπ Read
via "ITPro".
IT PRO
GitHub Enterprise Server 3.5 is equipped with a horde of new security protections | IT PRO
Admins are also given more controls to ensure the smooth running of servers, be it on-prem or in the cloud
π’ What is your digital footprint? π’
π Read
via "ITPro".
Your digital footprint is always growing β so we explore how you can keep it under controlπ Read
via "ITPro".
IT PRO
What is your digital footprint? | IT PRO
Your digital footprint is always growing β so we explore how you can keep it under control
π’ Russian Killnet cyber attacks begin on Italian-linked businesses π’
π Read
via "ITPro".
Italy's cyber security authority issued a warning to all public and private sector organisations with links to the country to prepare for an increased number of cyber attacks from the pro-Russian hackersπ Read
via "ITPro".
IT PRO
Russian Killnet cyber attacks begin on Italian-linked businesses | IT PRO
Italy's cyber security authority issued a warning to all public and private sector organisations with links to the country to prepare for an increased number of cyber attacks from the pro-Russian hackers
π’ WithSecure CTO: Industry needs to do a better job of targeting ransomware supply chains π’
π Read
via "ITPro".
The centralisation of services and tools for hackers should represent a point of vulnerability for those fighting cyber crimeπ Read
via "ITPro".
IT PRO
WithSecure CTO: Industry needs to do a better job of targeting ransomware supply chains | IT PRO
The centralisation of services and tools for hackers should represent a point of vulnerability for those fighting cyber crime
π’ Chinese hackers exploit Microsoft zero-day as list of vulnerable Office products grows π’
π Read
via "ITPro".
Microsoft has published a support guide and temporary workarounds for IT admins to mitigate the threatπ Read
via "ITPro".
ITPro
Chinese hackers exploit Microsoft zero-day as list of vulnerable Office products grows
Microsoft has published a support guide and temporary workarounds for IT admins to mitigate the threat
π’ What makes for the most deceptive phishing attacks? π’
π Read
via "ITPro".
Phishing attacks are evolving to circumvent protective measures. What can businesses do to ensure they donβt succeed?π Read
via "ITPro".
IT PRO
What makes for the most deceptive phishing attacks? | IT PRO
Phishing attacks are evolving to circumvent protective measures. What can businesses do to ensure they donβt succeed?
π’ Microsoft Windows Defender review: An ideal (if unfriendly) business security solution π’
π Read
via "ITPro".
Central management puts Defender head and shoulders above other free options; the fact that it's already deployed doesn't hurt eitherπ Read
via "ITPro".
ITPro
Microsoft Windows Defender review: An ideal (if unfriendly) business security solution
Central management puts Defender head and shoulders above other free options; the fact that it's already deployed doesn't hurt either
π’ India backtracks on biometric ID system warning π’
π Read
via "ITPro".
Despite alerting citizens to problems with the system, it has now withdrawn the warning two days after its publicationπ Read
via "ITPro".
IT PRO
India backtracks on biometric ID system warning | IT PRO
Despite alerting citizens to problems with the system, it has now withdrawn the warning two days after its publication
π’ Fresh Microsoft Office zero-day executes code on fully patched applications π’
π Read
via "ITPro".
Malicious documents saved in Rich Text Format are especially concerning since they can execute code without even being openedπ Read
via "ITPro".
ITPro
Fresh Microsoft Office zero-day executes code on fully patched applications
Malicious documents saved in Rich Text Format are especially concerning since they can execute code without even being opened
π’ How to turn on Windows Defender π’
π Read
via "ITPro".
Find out how to switch on Windows Defender in Windows 10 and older versions of the OSπ Read
via "ITPro".
ITPro
How to turn on Windows Defender
A simple guide on how to turn on Windows Defender in Windows 10 and Windows 11, and turn it off again if necessary
β Evil Corp Pivots LockBit to Dodge U.S. Sanctions β
π Read
via "Threat Post".
The cybercriminal group is distancing itself from its previous branding by shifting tactics and tools once again in an aim to continue to profit from its nefarious activity.π Read
via "Threat Post".
Threat Post
Evil Corp Pivots LockBit to Dodge U.S. Sanctions
The cybercriminal group is distancing itself from its previous branding by shifting tactics and tools once again in an aim to continue to profit from its nefarious activity.
π1
π΄ For Ransomware, Speed Matters π΄
π Read
via "Dark Reading".
Someone interested in putting together a ransomware campaign has to consider several factors. The LockBit group touts its speed over competing families to attract potential buyers for its ransowmare-as-a-service.π Read
via "Dark Reading".
Dark Reading
For Ransomware, Speed Matters
Someone interested in putting together a ransomware campaign has to consider several factors. The LockBit group touts its speed over competing families to attract potential buyers for its ransowmare-as-a-service.
β Old Hacks Die Hard: Ransomware, Social Engineering Top Verizon DBIR Threats β Again β
π Read
via "Threat Post".
Deja-Vu data from this year's DBIR report feels like we are stuck in the movie 'Groundhog Day.'π Read
via "Threat Post".
Threat Post
Old Hacks Die Hard: Ransomware, Social Engineering Top Verizon DBIR Threats β Again
Verizonβs annual report for 2022 confirms trends that have been years in the making.