Original release date: February 10, 2023 CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To…
Aggiornamenti di sicurezza risolvono 2 vulnerabilità, di cui una con gravità “alta”, nel prodotto WebSphere, noto application server di IBM. Tale vulnerabilità, qualora sfruttata potrebbe permettere il bypass dei meccanismi di sicurezza sui sistemi interessati. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: February 9, 2023 CISA, the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), the Department of Health and Human Services (HHS), and Republic of Korea’s Defense Security Agency and National Intelligence Service have released a joint Cybersecurity Advisory (CSA), Ransomware…
Zyxel rilascia aggiornamenti di sicurezza per sanare una vulnerabilità presente in alcuni modelli di firewall. Tale vulnerabilità, qualora sfruttata, potrebbe permettere a un utente remoto autenticato l’esecuzione di comandi arbitrari sui dispositivi target. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: February 7, 2023 CISA has released a recovery script for organizations that have fallen victim to ESXiArgs ransomware. The ESXiArgs ransomware encrypts configuration files on vulnerable ESXi servers, potentially rendering virtual machines (VMs) unusable. CISA recommends organizations impacted by ESXiArgs evaluate the…
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 gennaio al 5 febbraio 2023: Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: February 2, 2023 CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To…
Rilevato il massiccio sfruttamento attivo in rete della vulnerabilità CVE-2021–21974 – già sanata dal vendor nel febbraio 2021 – presente nei prodotti VMware ESXi. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
