Monday, September 20, 2021
Latest:

Home

Editors' Pick 

Operation Harvest

Geronimo

A McAfee Enterprise CTO csapata leleplezett egy kémkedési kampányt egy ügyfelük hálózatán, amely elsőre egy rosszindulatú kódfuttatásnak tűnt, de a

REvil visszafejtő kód

Geronimo

Vermilion Strike

Geronimo

FORCEDENTRY: Az Apple kihasználása

Geronimo

A BlackMatter csoport visszatért

Yanac

News

News 

A billionaire wants to build a utopia in the US desert. Seems like this could go wrong | Jessa Crispin

The architects of the proposed 150,000-acre project are scouting the American south-west. They’re already predicting the first residents can move

A big deal for the future miniaturization of chips

Tech giants quietly buy up dozens of companies a year. The Biden administration is finally noticing.

Tech giants quietly buy up dozens of companies a year. The Biden administration is finally noticing.

Nigerian Threat Actor Targeting Aviation Industry Since 2018

Awareness Corner

Follow Us

Facebook-f

Vendors' news

20th September – Threat Intelligence Report

Gaming Industry Paves the Way

Healthcare Modernization? More Like Building the Plane While Flying It

DDoS Chart Toppers?BPS, PPS and RPS Greatest Hits

What Should I Watch Tonight? I Have Tens of Thousands of On-Demand Media Options

Life with the Pengiun

New Go malware Capoae targets WordPress installs, Linux systems>

What is IoT device management?

Model-driven observability: Embedded Alert Rules

Kali Linux 2021.3 released with new pentest tools, improvements>

Snap Performance Skunk Works – Ensuring speed and consistency for snaps

Check this out

Nigerian Threat Actor Targeting Aviation Industry Since 2018

Becrypt wins Cyber/Defence Innovation Den

Pakistani man sentenced to 12 years in prison for unlocking nearly 2M AT&T phones

106 arrested in a sting against online fraudsters

New licensing conditions for cyber-security service providers to kick in by early 2022 – The Straits Times

CERT news

Post Title

Post Title

RT @chrisdoman: We’ve released a number of tools and information to help DFIR analysts responding to the #REvil / #Kaseya saga this weekend…

Featured categories

News 

Tech giants quietly buy up dozens of companies a year. The Biden administration is finally noticing.

News 

Tech giants quietly buy up dozens of companies a year. The Biden administration is finally noticing.

News 

A big deal for the future miniaturization of chips

News 

A billionaire wants to build a utopia in the US desert. Seems like this could go wrong | Jessa Crispin

IOT

ICS

5G trends

Omar Qureshi: Decoding the blockchain

Robert Lemos: IoT ‘Nutrition’ Labels Aim to Put Security on Display

Anders Elbak: Nordic Internet-of-Things Forecast, 2021-2025

Washington Post Live: 5G: Industry 4.0 with Niklas Heuveldop

Aaron Hurst: The main types of IoT sensors in the market today

World Development Report 2021 : Data for Better Lives

Shourjya Mookersjeesep:  Rapid digitalization may leave smart cities open to cyberattacks

Internet of Things Development Survey 2021, Volume 1

Timothy D. Christ: The internet of things is moving the broker’s cheese

AN IOTA on IOT Internet of Things: Converging Technologies for Smart Environments and Integrated Ecosystems

US security agencies alert on active exploitation of a vulnerability in ManageEngine ADSelfService Plus

Nozomi, Tripwire align to deliver cybersecurity, compliance solutions for IT, IoT, OT domains

Malicious cyber activity felt across Australian government, critical infrastructure sectors

Many security vulnerabilities detected in Siemens hardware used in critical infrastructure industry

VaxSurge Ransomware Hits Freezers

US bulk power systems, electric grid includes critical equipment from China

Security risks to electric utilities continue to rise, as threat surface widens

CRS report analyzes existing pipeline cyber security risks, federal action

Regulations likely to improve cyber resilience of America’s water, wastewater systems

VaxSurge Ransomware

Xiaomi announces 11T and 11T Pro 5G phones

Telefonica and NEC announce open RAN trials in Spain, Germany, the UK and Brazil

DISH selects IBM for cloud-native 5G network

Nokia restarts O-RAN Alliance work

Preventing network outages in a 5G world

Nigerian Communications Commission tasked with quick 5G network rollout

Ookla reveals that Three has the fastest median 5G download speed in the UK

UK Government launches competition to boost 5G rollout

Zero-touch 5G automation is a marathon, not a sprint

Zeetta Networks, Airspan, and Druid slice private 5G networks for manufacturers

Vulnerabilities

OpenSIS Community 8.0 SQL Injection

Atlassian Confluence WebWork OGNL Injection

Compro Technology IP Camera Credential Disclosure

Atlassian Confluence WebWork OGNL Injection

Atlassian Confluence WebWork OGNL Injection

OpenSIS Community 8.0 SQL Injection

Microsoft Zero-Day-of-the-Month Club

Microsoft Zero-Day-of-the-Month Club

CVE-2021-40146

CVE-2021-38555

[Bug 258428] audio/flac: Potential fixes we may want to add

Dahua IPC-HX3XXX Data Packet improper authentication [CVE-2021-33045]

Dahua IPC-HX3XXX Data Packet improper authentication [CVE-2021-33044]

OpenSIS Community 8.0 SQL Injection

Apache Any23 up to 2.4 StreamUtils.java xml external entity reference

Apache Any23 up to 2.4 YAMLExtractor.java Privilege Escalation

‘Azurescape’ Kubernetes Attack Allows Cross-Container Cloud Compromise

UPDATE Aggiornamenti di sicurezza Microsoft agosto 2021, corrette tre vulnerabilità zero-day: i dettagli

How CISOs are Building a Modern Cybersecurity Partnership – Entrepreneur

REvil ransomware is back in full attack mode and leaking data

CVE-2021-3049 Cortex XSOAR: Improper Authorization of Incident Investigations Vulnerability (Severity: LOW)

CVE-2021-3052 PAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface (Severity: HIGH)

CVE-2021-3054 PAN-OS: Unsigned Code Execution During Plugin Installation Race Condition Vulnerability (Severity: HIGH)

CVE-2020-10188 PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188) (Severity: HIGH)

CVE-2021-3051 Cortex XSOAR: Authentication Bypass in SAML Authentication (Severity: HIGH)

CVE-2021-3053 PAN-OS: Exceptional Condition Denial-of-Service (DoS) (Severity: HIGH)

CVE-2021-3055 PAN-OS: XML External Entity (XXE) Reference Vulnerability in the PAN-OS Web Interface (Severity: MEDIUM)

U.S. Energy Information Administration (EIA) SQL Injection

Artica Proxy VMWare Appliance 4.30.000000 SP273 Path Traversal

BSCW Server Remote Code Execution