CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on September 14, 2023. These...
Month: September 2023
CISA: Mozilla Releases Security Updates for Multiple Products
Mozilla Releases Security Updates for Multiple Products Mozilla has released security updates to address a vulnerability affecting Firefox, Firefox ESR,...
CISA: CISA Adds Three Known Vulnerabilities to Catalog
CISA Adds Three Known Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: CISA Adds One Known Vulnerability to Catalog
CISA Adds One Known Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on...
CISA: NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats
NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats Today, the National Security Agency (NSA), the Federal Bureau...
MalindoAir – 4,328,232 breached accounts
HIBP In early 2019, the Malaysian airline Malindo Air suffered a data breach that exposed tens of millions of customer...
Avoid These 5 IT Offboarding Pitfalls
Employee offboarding is no one's favorite task, yet it is a critical IT process that needs to be executed diligently...
Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems
A set of memory corruption flaws have been discovered in the ncurses (short for new curses) programming library that could...
Free Download Manager Site Compromised to Distribute Linux Malware to Users for 3+ Years
A download manager site served Linux users malware that stealthily stole passwords and other sensitive information for more than three...
US-CERT Vulnerability Summary for the Week of September 4, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocanonical_ltd. -- snapd_for_linuxUsing the TIOCLINUX ioctl request, a malicious snap could inject...
NucleiFuzzer – Powerful Automation Tool For Detecting XSS, SQLi, SSRF, Open-Redirect, Etc.. Vulnerabilities In Web Applications
NucleiFuzzer is an automation tool that combines ParamSpider and Nuclei to enhance web application security testing. It uses ParamSpider to...
HackerOne Bug Bounty Disclosure: b-regular-expression-denial-of-service-redos-vulnerability-before-b-hungtd
Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'hungtd'Link to Submitters Profile:https://hackerone.com/b'hungtd' Report Title:b'Regular Expression Denial of Service...
HackerOne Bug Bounty Disclosure: b-able-to-see-bonus-amount-given-to-a-report-even-if-the-bounty-and-bonus-is-not-visible-to-public-or-mentioned-in-report-id-json-b-callmed
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'callmed0_4'Link to Submitters Profile:https://hackerone.com/b'callmed0_4' Report Title:b'Able to see Bonus amount given to...
HackerOne Bug Bounty Disclosure: b-potential-null-dereference-in-libssh-s-sftp-server-b-wct
Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'wct'Link to Submitters Profile:https://hackerone.com/b'wct' Report Title:b"Potential NULL dereference in libssh's...
CISA: CISA Adds One Known Vulnerability to Catalog
CISA Adds One Known Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on September 14, 2023. These...
PSA: Ongoing Webex malvertising campaign drops BatLoader
A new malvertising campaign is targeting corporate users who are downloading the popular web conferencing software Webex. Threat actors have...
CISA: CISA Adds Two Known Vulnerabilities to Catalog
CISA Adds Two Known Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on September 12, 2023. These...
CISA: Microsoft Releases September 2023 Updates
Microsoft Releases September 2023 Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A cyber threat actor...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address vulnerabilities affecting Adobe software. A cyber...
CISA: CISA Adds Two Known Vulnerabilities to Catalog
CISA Adds Two Known Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: Apple Releases Security Updates for iOS and macOS
Apple Releases Security Updates for iOS and macOS Apple has released security updates to address a vulnerability in multiple products....
CISA: NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats
NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats Today, the National Security Agency (NSA), the Federal Bureau...
