Cybersecurity – Pagina 108 – Luca Donetti Dontin

Feb182024

Aggiornamenti per prodotti Eset (AL01/240216/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Eset corregge una vulnerabilità di sicurezza con gravità “alta” che interessa i propri prodotti di sicurezza. Tale vulnerabilità, qualora sfruttata, potrebbe consentire a un attaccante locale la possibilità di elevare i propri privilegi sui sistemi interessati. Source link Author: csirt@pec.acn.gov.it Article used for cyber security…

Continue reading →

Feb162024

CISA and MS-ISAC Release Advisory on Compromised Account Used to Access State Government Organization

in Cybersecurity
Tagged with Cisa

Today, CISA and the Multi-State Information Sharing & Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA), Threat Actor Leverages Compromised Account of Former Employee to Access State Government Organization to provide network defenders with the tactics, techniques, and procedures (TTPs) utilized by a threat actor…

Continue reading →

Feb162024

Aggiornamenti Mensili Microsoft (AL01/240214/CSIRT-ITA) – Aggiornamento

in Cybersecurity
Tagged with csirt

Microsoft ha rilasciato gli aggiornamenti di sicurezza mensili che risolvono un totale di 73 nuove vulnerabilità, di cui 2 di tipo 0-day. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb142024

ISC Releases Security Advisories for BIND 9

in Cybersecurity
Tagged with Cisa

The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple versions of ISC’s Berkeley Internet Name Domain (BIND) 9. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition. CISA encourages users and administrators to review the…

Continue reading →

Feb142024

Vulnerabilità Zoom (AL04/240213/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Rilevate nuove vulnerabilità, di cui una con gravità “critica” e una con gravità “alta”, in alcuni relativi alla suite di videoconferenza Zoom. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb122024

JetBrains Releases Security Advisory for TeamCity On-Premises

in Cybersecurity
Tagged with Cisa

JetBrains released a security advisory to address a vulnerability (CVE-2024-23917) in TeamCity On-Premises. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the Critical Security Issue Affecting TeamCity On-Premises-CVE-2024-23917 and apply the necessary…

Continue reading →

Feb122024

Rilevate vulnerabilità in PostgreSQL (AL02/240209/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

PostgreSQL Global Development Group ha rilasciato aggiornamenti di sicurezza per risolvere una vulnerabilità con gravità “alta” in PostgreSQL, noto DBMS open source. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb102024

CISA Adds One Known Exploited Vulnerability to Catalog

in Cybersecurity
Tagged with Cisa

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-21762 Fortinet FortiOS Out-of-Bound Write Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive…

Continue reading →