π΄ Ransomware Gang Demands $10M in Attack on French Hospital π΄
π Read
via "Dark Reading".
Center Hospitalier Sud Francilien (CHSF), a hospital outside of Paris, has redirected incoming patients to other medical facilities in the wake of a ransomware attack that began on Aug. 21.π Read
via "Dark Reading".
Dark Reading
Ransomware Gang Demands $10M in Attack on French Hospital
Center Hospitalier Sud Francilien (CHSF), a hospital outside of Paris, has redirected incoming patients to other medical facilities in the wake of a ransomware attack that began on Aug. 21.
π΄ Efficient 'MagicWeb' Malware Subverts AD FS Authentication, Microsoft Warns π΄
π Read
via "Dark Reading".
The Russia-backed Nobelium APT has pioneered a post-exploitation tool allowing attackers to authenticate as any user.π Read
via "Dark Reading".
Dark Reading
Efficient 'MagicWeb' Malware Subverts AD FS Authentication, Microsoft Warns
The Russia-backed Nobelium APT has pioneered a post-exploitation tool allowing attackers to authenticate as any user.
π΄ CISA: Just-Disclosed Palo Alto Networks Firewall Bug Under Active Exploit π΄
π Read
via "Dark Reading".
The bug tracked as CVE-2022-0028 allows attackers to hijack firewalls without authentication, in order to mount DDoS hits on their targets of choice.π Read
via "Dark Reading".
Dark Reading
CISA: Just-Disclosed Palo Alto Networks Firewall Bug Under Active Exploit
The bug tracked as CVE-2022-0028 allows attackers to hijack firewalls without authentication, in order to mount DDoS hits on their targets of choice.
βΌ CVE-2022-32837 βΌ
π Read
via "National Vulnerability Database".
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.5, tvOS 15.6, iOS 15.6 and iPadOS 15.6. An app may be able to cause unexpected system termination or write kernel memory.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32893 βΌ
π Read
via "National Vulnerability Database".
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1, Safari 15.6.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32857 βΌ
π Read
via "National Vulnerability Database".
This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A user in a privileged network position can track a userΓ’β¬β’s activity.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32839 βΌ
π Read
via "National Vulnerability Database".
The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A remote user may cause an unexpected app termination or arbitrary code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32812 βΌ
π Read
via "National Vulnerability Database".
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina. An app may be able to execute arbitrary code with kernel privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32793 βΌ
π Read
via "National Vulnerability Database".
Multiple out-of-bounds write issues were addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.5, watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6. An app may be able to disclose kernel memory.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32811 βΌ
π Read
via "National Vulnerability Database".
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina. An app may be able to execute arbitrary code with kernel privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32834 βΌ
π Read
via "National Vulnerability Database".
An access issue was addressed with improvements to the sandbox. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina. An app may be able to access sensitive user information.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32840 βΌ
π Read
via "National Vulnerability Database".
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.5, watchOS 8.7, iOS 15.6 and iPadOS 15.6. An app may be able to execute arbitrary code with kernel privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2018-14519 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in Kirby 2.5.12. The delete page functionality suffers from a CSRF flaw. A remote attacker can craft a malicious CSRF page and force the user to delete a page.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32894 βΌ
π Read
via "National Vulnerability Database".
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32810 βΌ
π Read
via "National Vulnerability Database".
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.5, watchOS 8.7, iOS 15.6 and iPadOS 15.6. An app may be able to execute arbitrary code with kernel privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2018-14520 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in Kirby 2.5.12. The application allows malicious HTTP requests to be sent in order to trick a user into adding web pages.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32813 βΌ
π Read
via "National Vulnerability Database".
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. An app with root privileges may be able to execute arbitrary code with kernel privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32838 βΌ
π Read
via "National Vulnerability Database".
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6. An app may be able to read arbitrary files.π Read
via "National Vulnerability Database".
π’ IT Pro News In Review: Global south fights ransomware while Alphabet splurges on blockchain π’
π Read
via "ITPro".
Catch up on the biggest headlines of the week in just two minutesπ Read
via "ITPro".
IT PRO
IT Pro News In Review: Global south fights ransomware while Alphabet splurges on blockchain
Catch up on the biggest headlines of the week in just two minutes
π’ Record for the largest ever HTTPS DDoS attack smashed once again π’
π Read
via "ITPro".
The DDoS attack lasted 69 minutes and surpassed the previous record of 26 million RPSπ Read
via "ITPro".
IT PRO
Record for the largest ever HTTPS DDoS attack smashed once again | IT PRO
The DDoS attack lasted 69 minutes and surpassed the previous record of 26 million RPS
π’ Escape the ransomware maze π’
π Read
via "ITPro".
Conventional endpoint protection tools just arenβt the best defence anymoreπ Read
via "ITPro".
IT PRO
Escape the ransomware maze
Conventional endpoint protection tools just arenβt the best defence anymore