Cybersecurity – Pagina 135 – Luca Donetti Dontin

Feb092023

Aggiornamenti per firewall Zyxel (AL03/230208/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Zyxel rilascia aggiornamenti di sicurezza per sanare una vulnerabilità presente in alcuni modelli di firewall. Tale vulnerabilità, qualora sfruttata, potrebbe permettere a un utente remoto autenticato l’esecuzione di comandi arbitrari sui dispositivi target. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb082023

CISA Releases ESXiArgs Ransomware Recovery Script

in Cybersecurity
Tagged with Cisa

Original release date: February 7, 2023 CISA has released a recovery script for organizations that have fallen victim to ESXiArgs ransomware. The ESXiArgs ransomware encrypts configuration files on vulnerable ESXi servers, potentially rendering virtual machines (VMs) unusable. CISA recommends organizations impacted by ESXiArgs evaluate the…

Continue reading →

Feb072023

La Settimana Cibernetica del 5 febbraio 2023

in Cybersecurity
Tagged with csirt

Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 gennaio al 5 febbraio 2023: Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb062023

CISA Adds Two Known Exploited Vulnerabilities to Catalog

in Cybersecurity
Tagged with Cisa

Original release date: February 2, 2023 CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To…

Continue reading →

Feb052023

Rilevato lo sfruttamento massivo della CVE-2021–21974 in VMWare ESXi (AL01/230204/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Rilevato il massiccio sfruttamento attivo in rete della vulnerabilità CVE-2021–21974 – già sanata dal vendor nel febbraio 2021 – presente nei prodotti VMware ESXi. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb042023

CISA Releases Six Industrial Control Systems Advisories

in Cybersecurity
Tagged with Cisa

Original release date: February 2, 2023 CISA released six Industrial Control Systems (ICS) advisories on February 2, 2023.These advisories provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical…

Continue reading →

Feb032023

Risolte vulnerabilità in Grafana (AL06/230203/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Rilasciati aggiornamenti di sicurezza per risolvere una vulnerabilità presente in Grafana, nota applicazione web per la visualizzazione e l’analisi interattiva di dati. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Feb022023

VMware Releases Security Update for VMware vRealize Operations

in Cybersecurity
Tagged with Cisa

Original release date: February 1, 2023 VMware released a security update that addresses a cross-site request forgery bypass vulnerability affecting VMware vRealize Operations. A malicious user could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review VMware…

Continue reading →