December 2022 - Page 29 of 65 - Cyber Security News

ZDI-22-1666: Canon imageCLASS MF644Cdw BJNP Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability....

December 15, 2022

News

Reimagining Democracy

Last week, I hosted a two-day workshop on reimagining democracy. The idea was to bring together people from a variety of disciplines who are all...

December 15, 2022

Advisories

CVE-2020-4497

IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap...

December 14, 2022

News

Cuba ransomware group used Microsoft developer accounts to sign malicious drivers

Microsoft suspended several accounts on its hardware developer program that signed malicious drivers used by a ransomware group called Cuba to disable endpoint security tools....

December 14, 2022

News

Six Charged in Mass Takedown of DDoS-for-Hire Sites

The U.S. Department of Justice (DOJ) today seized four-dozen domains that sold “booter” or “stresser” services — businesses that make it easy and cheap for...

December 14, 2022

Advisories

insight-13.0.50.20220502-4.fc36

FEDORA-2022-07d49bd9a8 Packages in this update: insight-13.0.50.20220502-4.fc36 Update description: Fix CVE-2022-4285. Fix a segfault when printing ghost variable. Read More

December 14, 2022

Advisories

insight-13.0.50.20220502-4.fc37

FEDORA-2022-3efcae2a46 Packages in this update: insight-13.0.50.20220502-4.fc37 Update description: Fix CVE-2022-4285. Fix a segfault when printing ghost variable. Read More

December 14, 2022

Advisories

USN-5781-1: Emacs vulnerability

It was discovered that Emacs did not properly manage certain inputs. An attacker could possibly use this issue to execute arbitrary commands. Read More

December 14, 2022

Advisories

Critical Patches Issued for Microsoft Products

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged...

December 14, 2022

Advisories

USN-5780-1: Linux kernel (OEM) vulnerabilities

It was discovered that a memory leak existed in the IPv6 implementation of the Linux kernel. A local attacker could use this to cause a...

December 14, 2022

Safeguarding Healthcare Organizations from IoMT Risks

An Interview With the Target & Home Depot Hacker

Sitting Ducks DNS Attacks Put Global Domains at Risk

Microsoft Power Pages Misconfiguration Leads to Data Exposure

ShrinkLocker ransomware: what you need to know

Massive Telecom Hack Exposes US Officials to Chinese Espionage

IT specialist Jack Teixeira jailed for 15 years after leaking classified military documents on Discord

New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones

API Security in Peril as 83% of Firms Suffer Incidents

Month: December 2022

ZDI-22-1666: Canon imageCLASS MF644Cdw BJNP Integer Overflow Remote Code Execution Vulnerability

Reimagining Democracy

CVE-2020-4497

Cuba ransomware group used Microsoft developer accounts to sign malicious drivers

Six Charged in Mass Takedown of DDoS-for-Hire Sites

insight-13.0.50.20220502-4.fc36

insight-13.0.50.20220502-4.fc37

USN-5781-1: Emacs vulnerability

Critical Patches Issued for Microsoft Products

USN-5780-1: Linux kernel (OEM) vulnerabilities