Archive for Cybersecurity - page 150

Ott082022

Risolte vulnerabilità in prodotti VMware (AL01/221007/CSIRT-ITA)

VMware ha rilasciato aggiornamenti di sicurezza per sanare 2 vulnerabilità nei prodotti ESXi, vCenter Server e Cloud Foundation. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.

Continue reading →

Ott072022

Top CVEs Actively Exploited by People’s Republic of China State-Sponsored Cyber Actors   

Original release date: October 6, 2022 CISA, the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (CSA) providing the top Common Vulnerabilities and Exposures (CVEs) used since 2020 by People’s Republic of China (PRC) state-sponsored cyber…

Continue reading →

Ott062022

Vulnerabilità in RealVNC (AL01/221004/CSIRT-ITA)

Rilevata una vulnerabilità nell’installer relativo ai software per la gestione remota dei dispositivi RealVNC VNC Server e VNC Viewer. Tale vulnerabilità, qualora sfruttata, potrebbe permettere l’elevazione dei privilegi sui dispositivi interessati tramite la manipolazione del componente MSI installer Repair. Source link Author: csirt@alfacert.gov.it Article used…

Continue reading →

Ott052022

Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization

Original release date: October 4, 2022 CISA, the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (CSA), Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization, highlighting advanced persistent threat (APT)…

Continue reading →

Ott042022

Aggiornamenti WithSecure (AL02/221004/CSIRT-ITA)

Aggiornamenti di sicurezza WithSecure – precedentemente noto come F-Secure – risolvono una vulnerabilità di sicurezza nei prodotti Endpoint Protection. Tale vulnerabilità, qualora sfruttata, potrebbe permettere la compromissione della disponibilità del servizio sui dispositivi interessati. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.

Continue reading →

Ott032022

Microsoft Releases Guidance on Zero-Day Vulnerabilities in Microsoft Exchange Server

Original release date: September 30, 2022 | Last revised: October 1, 2022 Microsoft has released Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server. According to the blog post, “Microsoft is aware of limited targeted attacks using the two vulnerabilities to get into users’…

Continue reading →

Ott022022

Vulnerabilità 0-day in Exchange Server (AL03/220930/CSIRT-ITA) – Aggiornamento

Rilevato lo sfruttamento attivo in rete di 2 vulnerabilità di tipo “0-day” presenti nel prodotto Microsoft Exchange server. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.

Continue reading →

Ott012022

Drupal Releases Security Update

Original release date: September 30, 2022 Drupal has released a security update to address a vulnerability affecting multiple versions of Drupal. An attacker could exploit this vulnerability to access sensitive information. For advisories addressing lower severity vulnerabilities, see Drupal’s Security advisories. CISA encourages users and…

Continue reading →

Page 150 of 176 ← First ... 148 149 150 151 152 ... Last →