Rilasciato il Jenkins Security Advisory di gennaio che risolve 2 vulnerabilità, di cui una con gravità “critica”, in Jenkins (Core) weekly e LTS. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Rilasciato il Jenkins Security Advisory di gennaio che risolve 2 vulnerabilità, di cui una con gravità “critica”, in Jenkins (Core) weekly e LTS. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Mozilla has released security updates to address vulnerabilities in Thunderbird and Firefox. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply the necessary updates: Thunderbird…
Apple ha rilasciato aggiornamenti di sicurezza per sanare 43 vulnerabilità nei propri prodotti. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-34048 VMware vCenter Server Out-of-Bounds Write Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational…
È stato rilevato il riacutizzarsi di una campagna di smishing a tema corrispondenza che sfrutta nomi e loghi riferibili ai servizi erogati da Poste Italiane. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA has issued Emergency Directive (ED) 24-01 Mitigate Ivanti Connect Secure and Ivanti Policy Secure Vulnerabilities in response to active vulnerabilities in the following Ivanti products: Ivanti Connect Secure and Ivanti Policy Secure. ED 24-01 directs all Federal Civilian Executive Branch (FCEB) agencies running Ivanti…
Today, CISA, the Federal Bureau of Investigation (FBI), and the Environmental Protection Agency released a joint Incident Response Guide for the Water and Wastewater Systems (WWS) Sector. The guide includes contributions from over 25 WWS Sector organizations spanning private industry, nonprofit, and government entities. This…
È stato rilevato il riacutizzarsi di una campagna di smishing a tema “benefici previdenziali” che sfrutta nomi e loghi riferibili ai servizi erogati dall’Istituto nazionale della previdenza sociale. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
