Original release date: December 1, 2022 Today, the Federal Bureau of Investigation (FBI) and CISA released a joint Cybersecurity Advisory (CSA) #StopRansomware: Cuba Ransomware to provide network defenders tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with Cuba ransomware. FBI investigations identified these…
Rilasciati aggiornamenti di sicurezza per risolvere una vulnerabilità, con gravità “critica”, presente nel framework Java open source nativo per Kubernetes denominato Quarkus. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: November 29, 2022 CISA released seven (7) Industrial Control Systems (ICS) advisories on November 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories…
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia 21 al 27 novembre 2022 Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: November 16, 2022 The Samba Team has released security updates to address vulnerabilities in multiple versions of Samba. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Samba security…
Campagne di estorsione finalizzate alla richiesta di denaro utilizzano la minaccia di pubblicazione di dati aziendali sensibili nel caso non venga effettuato un pagamento in Bitcoin. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: November 16, 2022 Cisco has released security updates for vulnerabilities affecting Cisco Identity Services Engine (ISE). A remote attacker could exploit some of these vulnerabilities to bypass authorization and access system files. For updates addressing vulnerabilities, see the Cisco Security Advisories page. …
Rilevate vulnerabilità con gravità “critica” in Apache Airflow. Tali vulnerabilità, qualora sfruttate, potrebbero permettere ad un utente malintenzionato remoto l’esecuzione di codice arbitrario sui dispositivi interessati. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.