Qbot Malware Returns In Campaign Targeting Hospitality Industry
The QakBot malware is once again being distributed in phishing campaigns after the botnet was disrupted by law enforcement over...
Month: December 2023
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 12, 2023. These...
CISA: CISA Releases SCuBA Google Workspace Secure Configuration Baselines for Public Comment
CISA Releases SCuBA Google Workspace Secure Configuration Baselines for Public Comment Today, CISA released the draft Secure Cloud Business Applications...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for Safari, iOS and iPadOS, Sonoma, Ventura, and...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. A...
CISA: The Apache Software Foundation Updates Struts 2
The Apache Software Foundation Updates Struts 2 The Apache Software Foundation has released security updates to address a vulnerability (CVE-2023-50164)...
CISA: CISA and Partners Release Advisory on Russian SVR-affiliated Cyber Actors Exploiting CVE-2023-42793
CISA and Partners Release Advisory on Russian SVR-affiliated Cyber Actors Exploiting CVE-2023-42793 Today, CISA—along with the U.S. Federal Bureau of...
CISA: CISA Releases Seventeen Industrial Control Systems Advisories
CISA Releases Seventeen Industrial Control Systems Advisories CISA released seventeen Industrial Control Systems (ICS) advisories on December 14, 2023. These...
CISA: Fortinet Releases Security Updates for Multiple Products
Fortinet Releases Security Updates for Multiple Products Fortinet has released security updates to address vulnerabilities in multiple Fortinet products. A...
CISA: CISA Secure by Design Alert Urges Manufacturers to Eliminate Default Passwords
CISA Secure by Design Alert Urges Manufacturers to Eliminate Default Passwords Today, CISA published guidance on How Manufacturers Can Protect...
CISA: CISA Releases Advisory on Cyber Resilience for the HPH Sector
CISA Releases Advisory on Cyber Resilience for the HPH Sector Today, CISA released a Cybersecurity Advisory, Enhancing Cyber Resilience: Insights...
NetworkSherlock – Powerful And Flexible Port Scanning Tool With Shodan
NetworkSherlock is a powerful and flexible port scanning tool designed for network security professionals and penetration testers. With its advanced...
Dell vApp Manager information disclosure | CVE-2023-48661
NAME__________Dell vApp Manager information disclosurePlatforms Affected:Dell vApp ManagerRisk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell vApp Manager could allow a remote authenticated attacker to...
Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKs nformation disclosure | CVE-2023-43583
NAME__________Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKs nformation disclosurePlatforms Affected:Zoom Video SDK Zoom Mobile...
Dompdf denial of service | CVE-2023-50262
NAME__________Dompdf denial of servicePlatforms Affected:Dompdf Dompdf 2.0.3Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Dompdf is vulnerable to a denial of service, caused by...
Siemens SIMATIC CP, SINAMICS, SIPLUS NET CP denial of service | CVE-2023-38380
NAME__________Siemens SIMATIC CP, SINAMICS, SIPLUS NET CP denial of servicePlatforms Affected:Siemens SIPLUS NET CP 1543-1 (6AG1543-1AX00- 2XE0) Siemens SIMATIC CP...
Siemens SCALANCE M-800/S615 Family command execution | CVE-2023-49691
NAME__________Siemens SCALANCE M-800/S615 Family command executionPlatforms Affected:Siemens SCALANCE M800/S615 Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) Siemens RUGGEDCOM RM1224 LTE(4G)...
Siemens SCALANCE M-800/S615 Family command execution | CVE-2023-49692
NAME__________Siemens SCALANCE M-800/S615 Family command executionPlatforms Affected:Siemens SCALANCE M800/S615 Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) Siemens RUGGEDCOM RM1224 LTE(4G)...
Incident Response and Management: A Comprehensive Tip for the Week
Cyber-attacks are an ever-looming threat in our increasingly digital world. These incidents can be disastrous, leading to the theft, alteration...
Microsoft Unveils New More Secure Windows Protected Print Mode
Microsoft announced a new Windows Protected Print Mode (WPP), introducing significant security enhancements to the Windows print system. "WPP builds...
Qnap Viostor Nvr Vulnerability Actively Exploited By Malware Botnet
A Mirai-based botnet named 'InfectedSlurs' is exploiting a remote code execution (RCE) vulnerability in QNAP VioStor NVR (Network Video Recorder)...
Mongodb Says Customer Data Was Exposed In A Cyberattack
MongoDB is warning that its corporate systems were breached and that customer data was exposed in a cyberattack that was...
Multiple High Severity Vulnerabilities in Samsung Products
Samsung has released security updates addressing multiple high severity vulnerabilities (CVE-2023-42564, CVE-2023-42563, CVE-2023-42562, CVE-2023-42561, CVE-2023-42568, CVE-2023-42560, CVE-2023-42567, CVE-2023-42566, CVE-2023-42565) in...
PikaBot C2 Detected – 172[.]232[.]186[.]251:5632
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...