Sintesi riepilogativa delle campagne malevole nella settimana del 11 – 17 Novembre 2023
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 464 indicatori di compromissione (IOC) individuati.
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-11-17-novembre-2023/
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 464 indicatori di compromissione (IOC) individuati.
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-11-17-novembre-2023/
CERT-AGID
Sintesi riepilogativa delle campagne malevole nella settimana del 11 – 17 Novembre 2023
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei…
Aggiornamenti di sicurezza per prodotti Mozilla
(AL01/231122/CSIRT-ITA)
Mozilla ha rilasciato aggiornamenti di sicurezza per sanare alcune vulnerabilità, di cui 7 con gravità “alta” nei prodotti Firefox, Firefox ESR, Firefox per iOS e Thunderbird.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-prodotti-mozilla-al01-231122-csirt-ita
(AL01/231122/CSIRT-ITA)
Mozilla ha rilasciato aggiornamenti di sicurezza per sanare alcune vulnerabilità, di cui 7 con gravità “alta” nei prodotti Firefox, Firefox ESR, Firefox per iOS e Thunderbird.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-prodotti-mozilla-al01-231122-csirt-ita
Rilevate vulnerabilità in prodotti Fortinet
(AL03/231115/CSIRT-ITA)
Rilevate nuove vulnerabilità in alcuni prodotti Fortinet, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevate-vulnerabilita-in-prodotti-fortinet-al03-231115-csirt-ita
(AL03/231115/CSIRT-ITA)
Rilevate nuove vulnerabilità in alcuni prodotti Fortinet, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevate-vulnerabilita-in-prodotti-fortinet-al03-231115-csirt-ita
Aggiornamenti di sicurezza per Synology Router Manager
(AL02/231122/CSIRT-ITA)
Aggiornamenti di sicurezza sanano una vulnerabilità con gravità “alta” presente in Synology Router Manager (SRM), sistema operativo utilizzato nei router Synology.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-synology-router-manager-al02-231122-csirt-ita
(AL02/231122/CSIRT-ITA)
Aggiornamenti di sicurezza sanano una vulnerabilità con gravità “alta” presente in Synology Router Manager (SRM), sistema operativo utilizzato nei router Synology.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-synology-router-manager-al02-231122-csirt-ita
La Settimana Cibernetica del 5 novembre 2023
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 ottobre al 5 novembre 2023.
by CSIRT - https://www.csirt.gov.it/contenuti/la-settimana-cibernetica-del-5-novembre-2023
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 ottobre al 5 novembre 2023.
by CSIRT - https://www.csirt.gov.it/contenuti/la-settimana-cibernetica-del-5-novembre-2023
Vulnerabilità in Veeam ONE
(AL02/231107/CSIRT-ITA)
Veeam ha reso noto, tramite un bollettino di sicurezza, la presenza di alcune vulnerabilità nel prodotto Veeam ONE, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/vulnerabilita-in-veeam-one-al02-231107-csirt-ita
(AL02/231107/CSIRT-ITA)
Veeam ha reso noto, tramite un bollettino di sicurezza, la presenza di alcune vulnerabilità nel prodotto Veeam ONE, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/vulnerabilita-in-veeam-one-al02-231107-csirt-ita
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
by SeeBug - http://www.seebug.org/vuldb/ssvid-99777
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
by SeeBug - http://www.seebug.org/vuldb/ssvid-99777
I Doc View在线文档预览系统远程代码执行漏洞
I Doc View在线文档预览系统远程代码执行漏洞
by SeeBug - http://www.seebug.org/vuldb/ssvid-99785
I Doc View在线文档预览系统远程代码执行漏洞
by SeeBug - http://www.seebug.org/vuldb/ssvid-99785
All the deals for InfoSec related software/tools this Black Friday / Cyber Monday.
I was a little late getting started with my wife pushing out a little 0-day baby as of today. Thank you CriimBow for kicking things off in the meantime!
https://github.com/0x90n/InfoSec-Black-Friday
I was a little late getting started with my wife pushing out a little 0-day baby as of today. Thank you CriimBow for kicking things off in the meantime!
https://github.com/0x90n/InfoSec-Black-Friday
GitHub
GitHub - 0x90n/InfoSec-Black-Friday: All the deals for InfoSec related software/tools this Black Friday
All the deals for InfoSec related software/tools this Black Friday - 0x90n/InfoSec-Black-Friday
🏴☠️ Play has just published a new victim : McHale Landscape Design
United States
by Ransomware live - https://www.ransomware.live/#/group/play
United States
by Ransomware live - https://www.ransomware.live/#/group/play
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Qilin has just published a new victim : HAESUNG DS CO Ltd
We will publish data on next week
by Ransomware live - https://www.ransomware.live/#/group/qilin
We will publish data on next week
by Ransomware live - https://www.ransomware.live/#/group/qilin
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Incransom has just published a new victim : B+P Gerüstbau GmbH
For more than 40 years, we have been involved in the most exciting construction projects in the country throughout Germany. With our team of over 420 colleagues, we do great things every day anew...
by Ransomware live - https://www.ransomware.live/#/group/incransom
For more than 40 years, we have been involved in the most exciting construction projects in the country throughout Germany. With our team of over 420 colleagues, we do great things every day anew...
by Ransomware live - https://www.ransomware.live/#/group/incransom
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Cactus has just published a new victim : Verhelst
From shell construction to recycling of construction waste. From asphalt production to sand mining. From asbestos removal to soil remediation. Verhelst Group is a total partner for professional construction projects. A construction group with a unique approach and extensive construction expertise.
by Ransomware live - https://www.ransomware.live/#/group/cactus
From shell construction to recycling of construction waste. From asphalt production to sand mining. From asbestos removal to soil remediation. Verhelst Group is a total partner for professional construction projects. A construction group with a unique approach and extensive construction expertise.
by Ransomware live - https://www.ransomware.live/#/group/cactus
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Blacksuit has just published a new victim : Select Education Group
5601 Stoddard Rd, Modesto, California, 95356, United States
by Ransomware live - https://www.ransomware.live/#/group/blacksuit
5601 Stoddard Rd, Modesto, California, 95356, United States
by Ransomware live - https://www.ransomware.live/#/group/blacksuit
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Ransomexx has just published a new victim : Admilla ELAP
Elap (formerly Admilia) offers its expertise and support throughout the implementation of your budget and accounting solution. Huge clients, financial documents, contracts, personal data and a lot of confidential things belongs to their customers. If you wanna be one someday your data will be here.
by Ransomware live - https://www.ransomware.live/#/group/ransomexx
Elap (formerly Admilia) offers its expertise and support throughout the implementation of your budget and accounting solution. Huge clients, financial documents, contracts, personal data and a lot of confidential things belongs to their customers. If you wanna be one someday your data will be here.
by Ransomware live - https://www.ransomware.live/#/group/ransomexx
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Alphv has just published a new victim : Eckell Sparks Law Firm
With offices in Media, PA and West Chester, PA, our staff of lawyers are available to meet you where you live or work. Whether it’s a personal injury case, you’ve been in an auto accident, you’re considering a divorce or separation, you’ve had a medical malpractice issue, starting a business [...]
by Ransomware live - https://www.ransomware.live/#/group/alphv
With offices in Media, PA and West Chester, PA, our staff of lawyers are available to meet you where you live or work. Whether it’s a personal injury case, you’ve been in an auto accident, you’re considering a divorce or separation, you’ve had a medical malpractice issue, starting a business [...]
by Ransomware live - https://www.ransomware.live/#/group/alphv
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Blackbasta has just published a new victim : jlgmarine.com
John Lilley & Gillie Ltd has more than 200 years of expertise in the manufacture of the magnetic compass and nautical instrument making has served the marine industry worldwide.SITE: www.jlgmarine.com Address 8 Neptune Court Orion Business Park NE29 7UW North Shields EnglandFULL DATA SIZE: 97gb 1. Finance 2. Confidentiality [...]
by Ransomware live - https://www.ransomware.live/#/group/blackbasta
John Lilley & Gillie Ltd has more than 200 years of expertise in the manufacture of the magnetic compass and nautical instrument making has served the marine industry worldwide.SITE: www.jlgmarine.com Address 8 Neptune Court Orion Business Park NE29 7UW North Shields EnglandFULL DATA SIZE: 97gb 1. Finance 2. Confidentiality [...]
by Ransomware live - https://www.ransomware.live/#/group/blackbasta
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Lockbit3 has just published a new victim : officinaverdedesign.it
Officina Design is a company that operates in the Design industry. It employs 1-5 people and has $1M-$5M of revenue.
by Ransomware live - https://www.ransomware.live/#/group/lockbit3
Officina Design is a company that operates in the Design industry. It employs 1-5 people and has $1M-$5M of revenue.
by Ransomware live - https://www.ransomware.live/#/group/lockbit3
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
🏴☠️ Hunters has just published a new victim : Crystal Lake Health Center
Country : United States of America - Exfiltraded data : yes - Encrypted data : yes
by Ransomware live - https://www.ransomware.live/#/group/hunters
Country : United States of America - Exfiltraded data : yes - Encrypted data : yes
by Ransomware live - https://www.ransomware.live/#/group/hunters
www.ransomware.live
Ransomware.live 👀
Ransomware.live tracks & monitors ransomware groups' victims and their activity. It was created by Julien Mousqueton, a security researcher. The website provides information on Ransomware groups, victims, negotiations, and payment demands. It also includes…
PNRR e trasformazione digitale: ecco gli investimenti e le riforme previste per la digitalizzazione della PA
La digitalizzazione della PA rappresenta una delle principali sfide individuate dalle strategie di ripresa delineate dal Piano Nazionale di Ripresa e Resilienza (PNRR). Il Regolamento (UE) 2021/241, che istituisce il Recovery and Resilience Facility, individua nella transizione digitale uno dei 6 pilastri per le strategie di [...]
by ForumPA - https://www.forumpa.it/pa-digitale/pnrr-e-trasformazione-digitale-ecco-gli-investimenti-e-le-riforme-previste-per-la-digitalizzazione-della-pa/
La digitalizzazione della PA rappresenta una delle principali sfide individuate dalle strategie di ripresa delineate dal Piano Nazionale di Ripresa e Resilienza (PNRR). Il Regolamento (UE) 2021/241, che istituisce il Recovery and Resilience Facility, individua nella transizione digitale uno dei 6 pilastri per le strategie di [...]
by ForumPA - https://www.forumpa.it/pa-digitale/pnrr-e-trasformazione-digitale-ecco-gli-investimenti-e-le-riforme-previste-per-la-digitalizzazione-della-pa/
FPA
PNRR e digitalizzazione della PA: tutti gli investimenti
Nel PNRR oltre 6 miliardi di euro sono destinati alla digitalizzazione della PA. Ecco gli investimenti previsti e i relativi stanziamenti
Secondo l’Autorità Meta non avrebbe adottato iniziative adeguate per fronteggiare la condotta di Asia Valente che sponsorizzerebbe prodotti, soprattutto strutture turistiche, occultando la finalità commerciale di questa attività e vantando una notevole popolarità basata perlopiù su fake follower.
AGCM - Autorita' Garante della Concorrenza e del Mercato
https://www.agcm.it/media/comunicati-stampa/2023/11/PS12653
AGCM - Autorita' Garante della Concorrenza e del Mercato
https://www.agcm.it/media/comunicati-stampa/2023/11/PS12653
www.agcm.it
Avviata istruttoria nei confronti di Meta-Instagram e dell’influencer Asia Valente
Secondo l’Autorità Meta non avrebbe adottato iniziative adeguate per fronteggiare la condotta di Asia Valente che sponsorizzerebbe prodotti, soprattutto strutture turistiche, occultando la finalità commerciale di questa attività e vantando una notevole popolarità…