Blog – Pagina 21 – Luca Donetti Dontin

Nov232023

Sanata vulnerabilità nel prodotto ManageEngine RecoveryManager Plus (AL01/231123/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Zoho ha rilasciato un bollettino di sicurezza per descrivere una vulnerabilità con gravità “alta” – identificata tramite la CVE-2023-48646 e già sanata dal vendor – presente nel prodotto RecoveryManager Plus. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Nov212023

CISA Releases Five Industrial Control Systems Advisories

in Cybersecurity
Tagged with Cisa

CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-325-01 WAGO PFC200 Series ICSA-23-325-02 Fuji Electric Tellus Lite V-Simulator ICSA-23-208-03 Mitsubishi Electric CNC Series (Update C) ICSA-23-115-01 Keysight…

Continue reading →

Nov212023

Aggiornamenti per Zyxel SecuExtender SSL VPN Client (AL02/231121/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Zyxel rilascia aggiornamenti di sicurezza per sanare una vulnerabilità presente nel client SecuExtender SSL VPN. Tale vulnerabilità potrebbe consentire a un utente locale la possibilità di elevare i propri privilegi e l’esecuzione di comandi arbitrari sui sistemi interessati. Source link Author: csirt@pec.acn.gov.it Article used for…

Continue reading →

Nov192023

CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector

in Cybersecurity
Tagged with Cisa

Today, CISA released the Mitigation Guide: Healthcare and Public Health (HPH) Sector as a supplemental companion to the HPH Cyber Risk Summary, published July 19, 2023. This guide provides defensive mitigation strategy recommendations and best practices to combat pervasive cyber threats affecting this critical infrastructure…

Continue reading →

Nov192023

Aggiornamenti WithSecure (AL01/231117/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Aggiornamenti di sicurezza WithSecure – precedentemente noto come F-Secure – risolvono una vulnerabilità di sicurezza nei prodotti di Endpoint Protection per Windows. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Nov172023

Juniper Releases Security Advisory for Juniper Secure Analytics

in Cybersecurity
Tagged with Cisa

Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure Analytics. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Juniper advisory JSA74298 and apply the necessary…

Continue reading →

Nov172023

Rilevate vulnerabilità in prodotti Splunk (AL02/231117/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Splunk ha rilasciato aggiornamenti di sicurezza per correggere 2 vulnerabilità, di cui una con gravità “alta” nei noti prodotti per l’analisi del traffico di rete Enterprise e Cloud Platform. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Nov152023

CISA, FBI, and MS-ISAC Release Advisory on Rhysida Ransomware

in Cybersecurity
Tagged with Cisa

Today, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA), #StopRansomware: Rhysida Ransomware, to disseminate known Rhysida ransomware indicators of compromise (IOCs), detection methods, and tactics,…

Continue reading →