Sunday, January 23, 2022
Latest:

Home

Editors' Pick 

DNS4EU

Geronimo

Európában is lesz egy nagy rendelkezésre állású nyilvános DNS, amely a kártevők elleni védelmet, valamint az illegális tartalomblokkolást kínálja, hogy

Bhunt jelszólopó

Geronimo

Donot Team kampány

Geronimo

Vöröskereszt személyes adatok sérültek

Geronimo

ThePhish: adathalász e-mail elemző

Geronimo

News

News 

How do we make the move to electric cars happen? Ask Norway | John Naughton

Two-thirds of all new cars bought by Norwegians last year were electric. Turns out you just need a government with

Security Affairs newsletter Round 350

Best Buy is discounting up to $1,000 on TVs, in time for Super Bowl LVI

Nasdaq braces for nervy fortnight as investors fall out of love with tech

Dark Souls 3 exploit could let hackers take control of your entire computer

Awareness Corner

Follow Us

Facebook-f

Vendors' news

This Week in Security News – January 21, 2022

Codex Exposed: Task Automation and Response Consistency

Emotet Spam Abuses Unconventional IP Address Formats to Spread Malware

Cloud-Based Monitoring for PowerEdge

The Beginning of a Beautiful Friendship with Storage

Life with the Pengiun

Nasty Linux kernel bug found and fixed>

Intel’s Unaccepted Memory Support Updated For Substantially Faster Booting Of TDX VMs>

Let’s build a snap together – a complex snapcraft.yaml walkthrough

Fileless Malware on Linux: Anatomy of an Attack>

CIS benchmark compliance: Introducing the Ubuntu Security Guide

Check this out

29 arrested in Albania, Greece and Italy for smuggling more than 1 100 migrants in yachts

29 arrested in Albania, Greece and Italy for smuggling more than 1 100 migrants in yachts

Unhappy New Year for cybercriminals as VPNLab.net goes offline

Over 1 530 firearms taken off the streets in Europol-coordinated operation

11 arrested in Spain and France for flying cannabis into Europe

CERT news

RT @IT_SiBe: Mit #Lookyloo für Webseiten … – beobachten, wer Zugriff auf Informationen hat – böswillige Aktivitäten erkennen – Phishing-A…

The friday reminder about @Microsoft exchange build and especially how is your patching and incident response going… https://t.co/HTD7OnfDh3

New version v1.10 of @lookyloo_app released including support for CIRCL hashlookup, new browser extension many impr… https://t.co/APMbsDQDYZ

Featured categories

Security Vulns 

CVE-2022-23850

Security Vulns 

epub2txt up to 2.02 EPUB Document xhtml.c xhtml_translate_entity stack-based overflow

News 

How do we make the move to electric cars happen? Ask Norway | John Naughton

News 

Security Affairs newsletter Round 350

IOT

ICS

5G trends

9 great reads from CNET this week: Smart homes, NFTs in games, Activision’s future and more – CNET

Google Home can help make your grocery shopping easier – CNET

Brave new home: 2022 will be remembered for how it redefined the smart home – CNET

Matter smart home platform could help your devices play together in 2022 video – CNET

6 Alexa settings you’ll want to change ASAP – CNET

Edge computing set for growth – that is, when we can agree what it is

Better smart home security in 5 easy steps – CNET

How the smart home will change in 2022 – CNET

Clean these 4 areas of your fridge now. Trust us, they’re filthy – CNET

5 creative uses for your Amazon Echo that go beyond the basics – CNET

FERC initiates process for integrating INSM requirements into CIP reliability standards

Cisco Catalyst IE9300 switch offers enterprise-grade capabilities into industrial networks

Biden administration scales up efforts to safeguard national security systems, DoD, intelligence community

Under-addressed risks, threats, security issues related to healthcare IoT environments identified

CISA warns ICS, OT operators in wake of WhisperGate malware attacks

Honeywell, Schneider Electric targeted in cyber-espionage campaign aimed at renewable energy companies

GAO scrutinizes federal responses to SolarWinds, Microsoft Exchange cybersecurity incidents

Microsoft identifies destructive malware operations targeting multiple organizations in Ukraine

NATO agency offers details on securing industrial automation and control systems in critical energy infrastructure

Prepping up for 2022, as OT industry focuses on federal government regulations, SBOMs

EU Commission offers €258m in funding to support 5G and Gigabit networks

Telia becomes first operator to launch commercial 5G in Lithuania

Telefonica Germany activates first Open RAN small cells

Latvia completes 700 MHz auction

French regulator study finds EMF levels largely unchanged after 5G deployment

Vodafone Spain to expand 5G coverage with the 700 MHz band

Vodafone Germany says its 5G services cover 54% of the population

Spain launches consultation on 26 GHz for 5G

Sony and Vodafone conduct remote 5G car trial in Germany

O2 Czechia launches 5G for home internet

Vulnerabilities

epub2txt up to 2.02 EPUB Document xhtml.c xhtml_translate_entity stack-based overflow

CVE-2022-23850

vanessa219 vditor prior 1.0.34 cross site scripting [CVE-2021-4103]

CVE-2021-4103

Profiling the Blood and Honor Online Hate Group – An OSINT Analysis

Fedora 35: zabbix 2022-1a667b0f90>

Fedora 35: webkit2gtk3 2022-25a98f5d55>

Fedora 34: zabbix 2022-dfe346f53f>

Attacks Escalating Against Linux-Based IoT Devices | #linux | #linuxsecurity | #cybersecurity | #infosecurity | #hacker

Attacks Escalating Against Linux-Based IoT Devices | #linux | #linuxsecurity | #cybersecurity | #infosecurity | #hacker

Vulnerabilities in Control Web Panel potentially expose Linux Servers to hack

Vulnerabilities in Control Web Panel potentially expose Linux Servers to hack

star7th showdoc up to 2.10.1 cross site scripting [CVE-2021-4172]

Talos Incident Response year-in-review for 2021

CVE-2021-4172

Spoofing attack in Microsoft Edge for Android

Fresenius Kabi Vigilant Software Suite 2.0.1.3 risky encryption

LG Smartphone AT Command denial of service [CVE-2022-23728]

Fresenius Kabi Vigilant Software Suite 2.0.1.3 Mastermed Dashboard hard-coded credentials

Fresenius Kabi Vigilant Software Suite 2.0.1.3 Mastermed Dashboard information disclosure

GPAC 1.1.0 base_scenegraph.c gf_node_unregister null pointer dereference

Dell Unisphere for PowerMax prior 9.2.2.2 access control [CVE-2021-36338]

GPAC 1.1.0 scenegraph/vrml_tools.c gf_sg_vrml_field_pointer_del null pointer dereference

GPAC 1.1.0 scenegraph/vrml_route.c gf_sg_destroy_routes null pointer dereference

GPAC 1.1.0 scene_dump.c gf_dump_vrml_sffield null pointer dereference

GPAC 1.1.0 base_scenegraph.c gf_node_unregister denial of service

Dell EMC AppSync up to 4.3 GET Request information disclosure

graphql-go up to 1.2.x resource consumption [CVE-2022-21708]

wasmCloud OTP up to 0.52.1 Host Runtime authorization

isomorphic-git cors-proxy up to 2.7.0 server-side request forgery