Read Time:3 Second
Digital Shadows warns of elevated risk from scammers and threat actors
Yearly Archives: 2022
python3.6-3.6.15-14.fc35
Read Time:7 Second
FEDORA-2022-004b185fa4
Packages in this update:
python3.6-3.6.15-14.fc35
Update description:
Security fix for CVE-2022-37454.
Cybersecurity startups to watch for in 2023
Read Time:33 Second
The problems cybersecurity startups attempt to solve are often a bit ahead of the mainstream. They can move faster than most established companies to fill gaps or emerging needs. Startups can often innovative faster because they are unfettered by an installed base.
The downside, of course, is that startups often lack resources and maturity. It’s a risk for a company to commit to a startup’s product or platform, and it requires a different kind of customer/vendor relationship. The rewards, however, can be huge if it gives that company a competitive advantage or reduces stress on security resources.
Medibank hackers revealed to be in Russia
Read Time:33 Second
The Australian Federal Police has revealed that those responsible for the data breach of Australian private health insurer Medibank are in Russia.
On October 13, Medibank paused trading in the Australian Securities Exchange and announced there had been a “cyber incident”. At the time the company believed no data had been accessed and that the main issue was at its ahm and international student policy management units.
But what started as the second largest breach in Australia’s history slowly unraveled into a potentially much more harmful breach than the infamous Optus breach, which impacted a third of the Australian population.
python3.6-3.6.15-14.fc36
Read Time:7 Second
FEDORA-2022-104076b1d8
Packages in this update:
python3.6-3.6.15-14.fc36
Update description:
Security fix for CVE-2022-37454.
CVE-2021-0185
Read Time:10 Second
Improper input validation in the firmware for some Intel(R) Server Board M10JNP Family before version 7.216 may allow a privileged user to potentially enable an escalation of privilege via local access.
dotnet6.0-6.0.110-2.fc37
Read Time:15 Second
FEDORA-2022-2c37647a9c
Packages in this update:
dotnet6.0-6.0.110-2.fc37
Update description:
This is the October 2022 monthly update for .NET 6.
It updates the SDK to 6.0.110 and the Runtime to 6.0.10.
This update includes a fix for CVE 2022-41032
Lacework releases cloud-native application security service
Read Time:39 Second
Cloud security vendor Lacework this week announced the availability of a cloud-native application protection platform (CNAPP) for its broader Polygraph Data Platform offering, providing an agentless, low-touch option for organizations looking to improve their application security posture.
There are two main components to the CNAPP release, according to Lacework, both of which require only that the user connect their cloud accounts with Lacework’s apparatus. The first is attack path analysis, which uses Lacework’s systems to analyze configurations, network topography and more to provide a visual representation of possible ways in which bad actors could compromise application workloads. The system searches for misconfigurations, open network access, identity management roles and known software vulnerabilities to create its diagnosis.
python3.6-3.6.15-14.fc37
Read Time:7 Second
FEDORA-2022-cae8089f93
Packages in this update:
python3.6-3.6.15-14.fc37
Update description:
Security fix for CVE-2022-37454.
python3.6-3.6.15-14.fc38
Read Time:7 Second
FEDORA-2022-17bc21cf38
Packages in this update:
python3.6-3.6.15-14.fc38
Update description:
Security fix for CVE-2022-37454.