Aggiornamenti per Trend Micro Apex One
(AL02/231108/CSIRT-ITA)
Trend Micro corregge 11 vulnerabilità di sicurezza con gravità inerenti al prodotto Apex One.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-per-trend-micro-apex-one-al02-231108-csirt-ita
(AL02/231108/CSIRT-ITA)
Trend Micro corregge 11 vulnerabilità di sicurezza con gravità inerenti al prodotto Apex One.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-per-trend-micro-apex-one-al02-231108-csirt-ita
Rilevato sfruttamento in rete della CVE-2023-47246 relativa a SysAid
(AL01/231110/CSIRT-ITA)
Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2023-47246 – già sanata dal vendor – che interessa la piattaforma di IT Service Management (ITSM) SysAid On-Prem.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevato-sfruttamento-in-rete-della-cve-2023-47246-relativa-a-sysaid-al01-231110-csirt-ita
(AL01/231110/CSIRT-ITA)
Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2023-47246 – già sanata dal vendor – che interessa la piattaforma di IT Service Management (ITSM) SysAid On-Prem.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevato-sfruttamento-in-rete-della-cve-2023-47246-relativa-a-sysaid-al01-231110-csirt-ita
Matteo Franceschetti, the CEO of Eight Sleep, which makes the $2,295 smart mattress topper “The Pod” tweeted: “Breaking news: The OpenAI drama is real. We checked our data and last night, SF saw a spike in low-quality sleep. There was a 27 percent increase in people getting under 5 hours of sleep. We need to fix this. Source: @eightsleep data.”
https://www.404media.co/ceo-reminds-everyone-eightsleep-pod-collects-sleep-data-to-make-zeitgeisty-point-about-openai-drama/
https://www.404media.co/ceo-reminds-everyone-eightsleep-pod-collects-sleep-data-to-make-zeitgeisty-point-about-openai-drama/
404 Media
CEO Reminds Everyone His Company Collects Customers' Sleep Data to Make Zeitgeisty Point About OpenAI Drama
The Eight Sleep pod is a mattress topper with a terms of service and a privacy policy. The company "may share or sell" the sleep data it collects from its users.
Sintesi riepilogativa delle campagne malevole nella settimana del 11 – 17 Novembre 2023
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 464 indicatori di compromissione (IOC) individuati.
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-11-17-novembre-2023/
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 464 indicatori di compromissione (IOC) individuati.
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-11-17-novembre-2023/
CERT-AGID
Sintesi riepilogativa delle campagne malevole nella settimana del 11 – 17 Novembre 2023
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei…
Aggiornamenti di sicurezza per prodotti Mozilla
(AL01/231122/CSIRT-ITA)
Mozilla ha rilasciato aggiornamenti di sicurezza per sanare alcune vulnerabilità, di cui 7 con gravità “alta” nei prodotti Firefox, Firefox ESR, Firefox per iOS e Thunderbird.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-prodotti-mozilla-al01-231122-csirt-ita
(AL01/231122/CSIRT-ITA)
Mozilla ha rilasciato aggiornamenti di sicurezza per sanare alcune vulnerabilità, di cui 7 con gravità “alta” nei prodotti Firefox, Firefox ESR, Firefox per iOS e Thunderbird.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-prodotti-mozilla-al01-231122-csirt-ita
Rilevate vulnerabilità in prodotti Fortinet
(AL03/231115/CSIRT-ITA)
Rilevate nuove vulnerabilità in alcuni prodotti Fortinet, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevate-vulnerabilita-in-prodotti-fortinet-al03-231115-csirt-ita
(AL03/231115/CSIRT-ITA)
Rilevate nuove vulnerabilità in alcuni prodotti Fortinet, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevate-vulnerabilita-in-prodotti-fortinet-al03-231115-csirt-ita
Aggiornamenti di sicurezza per Synology Router Manager
(AL02/231122/CSIRT-ITA)
Aggiornamenti di sicurezza sanano una vulnerabilità con gravità “alta” presente in Synology Router Manager (SRM), sistema operativo utilizzato nei router Synology.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-synology-router-manager-al02-231122-csirt-ita
(AL02/231122/CSIRT-ITA)
Aggiornamenti di sicurezza sanano una vulnerabilità con gravità “alta” presente in Synology Router Manager (SRM), sistema operativo utilizzato nei router Synology.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-synology-router-manager-al02-231122-csirt-ita
La Settimana Cibernetica del 5 novembre 2023
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 ottobre al 5 novembre 2023.
by CSIRT - https://www.csirt.gov.it/contenuti/la-settimana-cibernetica-del-5-novembre-2023
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 ottobre al 5 novembre 2023.
by CSIRT - https://www.csirt.gov.it/contenuti/la-settimana-cibernetica-del-5-novembre-2023
Vulnerabilità in Veeam ONE
(AL02/231107/CSIRT-ITA)
Veeam ha reso noto, tramite un bollettino di sicurezza, la presenza di alcune vulnerabilità nel prodotto Veeam ONE, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/vulnerabilita-in-veeam-one-al02-231107-csirt-ita
(AL02/231107/CSIRT-ITA)
Veeam ha reso noto, tramite un bollettino di sicurezza, la presenza di alcune vulnerabilità nel prodotto Veeam ONE, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/vulnerabilita-in-veeam-one-al02-231107-csirt-ita
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
by SeeBug - http://www.seebug.org/vuldb/ssvid-99777
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
by SeeBug - http://www.seebug.org/vuldb/ssvid-99777
I Doc View在线文档预览系统远程代码执行漏洞
I Doc View在线文档预览系统远程代码执行漏洞
by SeeBug - http://www.seebug.org/vuldb/ssvid-99785
I Doc View在线文档预览系统远程代码执行漏洞
by SeeBug - http://www.seebug.org/vuldb/ssvid-99785
All the deals for InfoSec related software/tools this Black Friday / Cyber Monday.
I was a little late getting started with my wife pushing out a little 0-day baby as of today. Thank you CriimBow for kicking things off in the meantime!
https://github.com/0x90n/InfoSec-Black-Friday
I was a little late getting started with my wife pushing out a little 0-day baby as of today. Thank you CriimBow for kicking things off in the meantime!
https://github.com/0x90n/InfoSec-Black-Friday
GitHub
GitHub - 0x90n/InfoSec-Black-Friday: All the deals for InfoSec related software/tools this Black Friday
All the deals for InfoSec related software/tools this Black Friday - 0x90n/InfoSec-Black-Friday
🏴☠️ Play has just published a new victim : McHale Landscape Design
United States
by Ransomware live - https://www.ransomware.live/#/group/play
United States
by Ransomware live - https://www.ransomware.live/#/group/play
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Qilin has just published a new victim : HAESUNG DS CO Ltd
We will publish data on next week
by Ransomware live - https://www.ransomware.live/#/group/qilin
We will publish data on next week
by Ransomware live - https://www.ransomware.live/#/group/qilin
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Incransom has just published a new victim : B+P Gerüstbau GmbH
For more than 40 years, we have been involved in the most exciting construction projects in the country throughout Germany. With our team of over 420 colleagues, we do great things every day anew...
by Ransomware live - https://www.ransomware.live/#/group/incransom
For more than 40 years, we have been involved in the most exciting construction projects in the country throughout Germany. With our team of over 420 colleagues, we do great things every day anew...
by Ransomware live - https://www.ransomware.live/#/group/incransom
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Cactus has just published a new victim : Verhelst
From shell construction to recycling of construction waste. From asphalt production to sand mining. From asbestos removal to soil remediation. Verhelst Group is a total partner for professional construction projects. A construction group with a unique approach and extensive construction expertise.
by Ransomware live - https://www.ransomware.live/#/group/cactus
From shell construction to recycling of construction waste. From asphalt production to sand mining. From asbestos removal to soil remediation. Verhelst Group is a total partner for professional construction projects. A construction group with a unique approach and extensive construction expertise.
by Ransomware live - https://www.ransomware.live/#/group/cactus
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Blacksuit has just published a new victim : Select Education Group
5601 Stoddard Rd, Modesto, California, 95356, United States
by Ransomware live - https://www.ransomware.live/#/group/blacksuit
5601 Stoddard Rd, Modesto, California, 95356, United States
by Ransomware live - https://www.ransomware.live/#/group/blacksuit
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Ransomexx has just published a new victim : Admilla ELAP
Elap (formerly Admilia) offers its expertise and support throughout the implementation of your budget and accounting solution. Huge clients, financial documents, contracts, personal data and a lot of confidential things belongs to their customers. If you wanna be one someday your data will be here.
by Ransomware live - https://www.ransomware.live/#/group/ransomexx
Elap (formerly Admilia) offers its expertise and support throughout the implementation of your budget and accounting solution. Huge clients, financial documents, contracts, personal data and a lot of confidential things belongs to their customers. If you wanna be one someday your data will be here.
by Ransomware live - https://www.ransomware.live/#/group/ransomexx
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Alphv has just published a new victim : Eckell Sparks Law Firm
With offices in Media, PA and West Chester, PA, our staff of lawyers are available to meet you where you live or work. Whether it’s a personal injury case, you’ve been in an auto accident, you’re considering a divorce or separation, you’ve had a medical malpractice issue, starting a business [...]
by Ransomware live - https://www.ransomware.live/#/group/alphv
With offices in Media, PA and West Chester, PA, our staff of lawyers are available to meet you where you live or work. Whether it’s a personal injury case, you’ve been in an auto accident, you’re considering a divorce or separation, you’ve had a medical malpractice issue, starting a business [...]
by Ransomware live - https://www.ransomware.live/#/group/alphv
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Blackbasta has just published a new victim : jlgmarine.com
John Lilley & Gillie Ltd has more than 200 years of expertise in the manufacture of the magnetic compass and nautical instrument making has served the marine industry worldwide.SITE: www.jlgmarine.com Address 8 Neptune Court Orion Business Park NE29 7UW North Shields EnglandFULL DATA SIZE: 97gb 1. Finance 2. Confidentiality [...]
by Ransomware live - https://www.ransomware.live/#/group/blackbasta
John Lilley & Gillie Ltd has more than 200 years of expertise in the manufacture of the magnetic compass and nautical instrument making has served the marine industry worldwide.SITE: www.jlgmarine.com Address 8 Neptune Court Orion Business Park NE29 7UW North Shields EnglandFULL DATA SIZE: 97gb 1. Finance 2. Confidentiality [...]
by Ransomware live - https://www.ransomware.live/#/group/blackbasta
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Lockbit3 has just published a new victim : officinaverdedesign.it
Officina Design is a company that operates in the Design industry. It employs 1-5 people and has $1M-$5M of revenue.
by Ransomware live - https://www.ransomware.live/#/group/lockbit3
Officina Design is a company that operates in the Design industry. It employs 1-5 people and has $1M-$5M of revenue.
by Ransomware live - https://www.ransomware.live/#/group/lockbit3
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…