CISA released four Industrial Control Systems (ICS) advisory on September 5, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-249-01 Hughes Network Systems WL3000 Fusion Software ICSMA-24-249-01 Baxter Connex Health Portal ICSA-20-303-01 Mitsubishi Electric MELSEC iQ-R, Q, and…
Elastic NV rilascia aggiornamenti di sicurezza per sanare due vulnerabilità con gravità “critica” in Kibana, nota piattaforma di visualizzazione dati. Tali vulnerabilità, qualora sfruttate, potrebbero permettere, a un utente malintenzionato, l’esecuzione di codice arbitrario sui sistemi interessati. Source link Author: csirt@pec.acn.gov.it Article used for cyber…
When the GeoServer vulnerability CVE-2024-36401 emerged, the FortiGuard Labs gathered related intelligence. This blog highlights the threat actors and how they exploit and use the vulnerability. Source link Author: Fortinet Article used for cyber security disclosure.
CISA released one Industrial Control Systems (ICS) advisory on September 3, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-247-01 LOYTEC Electronics LINX Series CISA encourages users and administrators to review newly released ICS advisories for technical details…
Ricercatori di sicurezza hanno recentemente rilevato l’utilizzo della piattaforma GitHub per la distribuzione di un malware, denominato LummaC2, volto a carpire informazioni sensibili, quali password, cookie, informazioni bancarie, carte di credito e portafogli di criptovaluta, dai dispositivi target. Source link Author: csirt@pec.acn.gov.it Article used for…
FortiGuard Labs has uncovered a fresh threat – Emansrepo stealer, which is distributed via multiple attack chains for months. Learn more. Source link Author: Fortinet Article used for cyber security disclosure.
Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and the Department of Defense Cyber Crime Center (DC3)—released Iran-based Cyber Actors Enabling Ransomware Attacks on U.S. Organizations. This joint advisory warns of cyber actors, known in the private sector as Pioneer Kitten, UNC757, Parisite,…
Rilevate 16 nuove vulnerabilità in Moodle, nota piattaforma open source tipicamente utilizzata per l’erogazione di corsi in modalità e-learning, di cui 1 con gravità “critica” e 7 con gravità “alta”. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
