Original release date: November 28, 2022 CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To…
Google ha rilasciato un aggiornamento per il browser Chrome per correggere una vulnerabilità di sicurezza di tipo 0-day. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: December 5, 2022 CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. This type of vulnerability is a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note:…
Nell’ambito delle attività di monitoraggio, questo CSIRT ha rilevato un significativo aumento di attacchi di tipo Distributed Denial of Service (DDoS) perpetrati da gruppi di hacktivisti ai danni di istituzioni italiane. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: December 1, 2022 CISA has released three (3) Industrial Control Systems (ICS) advisories on December 1, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS…
Rilasciati aggiornamenti di sicurezza che sanano nuove vulnerabilità, di cui 3 con gravità “alta”, presenti in Sophos Firewall. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: December 1, 2022 Today, the Federal Bureau of Investigation (FBI) and CISA released a joint Cybersecurity Advisory (CSA) #StopRansomware: Cuba Ransomware to provide network defenders tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with Cuba ransomware. FBI investigations identified these…
Rilasciati aggiornamenti di sicurezza per risolvere una vulnerabilità, con gravità “critica”, presente nel framework Java open source nativo per Kubernetes denominato Quarkus. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
