Archive for Cybersecurity - page 88

Lug092024

CISA and Partners join ASD’S ACSC to Release Advisory on PRC State-Sponsored Group, APT 40

CISA has collaborated with the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) to release an advisory, People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action outlining a PRC state-sponsored cyber group’s activity. The following organizations also collaborated with ASD’s…

Continue reading →

Lug092024

Rilevate vulnerabilità in prodotti Splunk (AL03/240702/CSIRT-ITA) – Aggiornamento

Splunk ha rilasciato aggiornamenti di sicurezza per correggere alcune vulnerabilità, di cui 4 con gravità “alta”, nei noti prodotti per l’analisi del traffico di rete Enterprise e Cloud Platform. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Lug082024

FortiGate-as-a-Service Combines the Flexibility and Scalability of the Cloud with the Power of Fortinet’s Purpose-built ASICs

Fortinet announces FortiGate-as-a-Service, an innovative solution that combines the power of our proprietary ASIC technology with the flexibility and scalability of cloud services. Learn more. Source link Author: Fortinet Article used for cyber security disclosure.

Continue reading →

Lug072024

CISA Releases Seven Industrial Control Systems Advisories

CISA released seven Industrial Control Systems (ICS) advisories on July 2, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-184-01 Johnson Controls Kantech Door Controllers ICSA-24-184-02 mySCADA myPRO ICSA-24-184-03 ICONICS and Mitsubishi Electric Products ICSA-24-179-04 Johnson Controls Illustra…

Continue reading →

Lug072024

PoC pubblico per lo sfruttamento della CVE-2024-36401 relativa al prodotto GeoServer (AL03/240705/CSIRT-ITA)

Disponibile un Proof of Concept (PoC) per la vulnerabilità CVE-2024-36401 – già sanata dal vendor – presente nel prodotto GeoServer, software open source per l’elaborazione di dati geospaziali. Tale vulnerabilità, qualora sfruttata, potrebbe permettere ad un utente malintenzionato l’esecuzione di codice da remoto. Source link…

Continue reading →

Lug052024

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-20399 Cisco NX-OS Command Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational…

Continue reading →

Lug052024

Rilevate vulnerabilità in MongoDB (AL01/240704/CSIRT-ITA)

MongoDB Inc. ha rilasciato aggiornamenti di sicurezza per risolvere una vulnerabilità con gravità “alta” che interessa la sandbox del parser ejson di MongoDB Compass, applicazione grafica per l’interazione con il database MongoDB. Tale vulnerabilità potrebbe essere sfruttata per eseguire codice arbitrario nel contesto dell’applicazione. Source…

Continue reading →

Lug032024

Juniper Networks Releases Security Bulletin for Junos OS: SRX Series

Juniper Networks released a security bulletin to address a vulnerability in Junos OS: SRX Series. A cyber threat actor could exploit this vulnerability to cause a denial-of-service condition.  Users and administrators are encouraged to review the following and apply the necessary updates: JSA83195 Juniper Security…

Continue reading →

Page 88 of 179 ← First ... 86 87 88 89 90 ... Last →