January 2023 - Page 3 of 75 - Cyber Security News

Stories from the SOC – RapperBot, Mirai Botnet – C2, CDIR Drop over SSH

Stories from the SOC is a blog series that describes recent real-world security incident investigations conducted and reported by the AT&T SOC analyst team for...

January 31, 2023

Advisories

java-latest-openjdk-19.0.2.0.7-1.rolling.el8

FEDORA-EPEL-2023-52e0512741 Packages in this update: java-latest-openjdk-19.0.2.0.7-1.rolling.el8 Update description: New in release OpenJDK 19.0.2 (2023-01-17) CVEs Fixed CVE-2023-21835 CVE-2023-21843 Security Fixes * JDK-8286070: Improve UTF8 representation...

January 31, 2023

Advisories

java-latest-openjdk-19.0.2.0.7-1.rolling.el9

FEDORA-EPEL-2023-fc74dc491a Packages in this update: java-latest-openjdk-19.0.2.0.7-1.rolling.el9 Update description: New in release OpenJDK 19.0.2 (2023-01-17) CVEs Fixed CVE-2023-21835 CVE-2023-21843 Security Fixes * JDK-8286070: Improve UTF8 representation...

January 31, 2023

Advisories

USN-5833-1: python-future vulnerability

Sebastian Chnelik discovered that python-future incorrectly handled certain HTTP header field. An attacker could possibly use this issue to cause a denial of service. Read...

January 31, 2023

News

Killnet Attackers DDoS US and Dutch Hospitals

Retaliatory Russian attacks latest response to geopolitical moves Read More

January 31, 2023

News

New UN cybercrime convention has a long way to go in a tight timeframe

Cybercrime is a growing scourge that transcends borders, spreading across the boundaries of virtually all the world's nearly 200 nation-states. From ransomware attacks to rampant...

January 31, 2023

News

Two US Doctors Convicted of $30m Medicare Fraud

Claims submitted for medical equipment not needed by patients Read More

January 31, 2023

News

QNAP: Patch Critical Remote Code Injection Bug

Vulnerability affects QTS and QuTS Hero firmware Read More

January 31, 2023

Advisories

Trovent Security Advisory 2203-01 / Micro Focus GroupWise transmits session ID in URL

Posted by Stefan Pietsch on Jan 30 # Trovent Security Advisory 2203-01 # ##################################### Micro Focus GroupWise transmits session ID in URL ################################################# Overview ########...

January 31, 2023

Advisories

ZDI-23-093: Cacti poll_for_data Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cacti. Authentication is not required to exploit this vulnerability. Read More

January 31, 2023

Sitting Ducks DNS Attacks Put Global Domains at Risk

Microsoft Power Pages Misconfiguration Leads to Data Exposure

ShrinkLocker ransomware: what you need to know

Massive Telecom Hack Exposes US Officials to Chinese Espionage

IT specialist Jack Teixeira jailed for 15 years after leaking classified military documents on Discord

New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones

API Security in Peril as 83% of Firms Suffer Incidents

Bank of England U-turns on Vulnerability Disclosure Rules

LevelBlue Cybersecurity Awareness Month Recap

Month: January 2023

Stories from the SOC – RapperBot, Mirai Botnet – C2, CDIR Drop over SSH

java-latest-openjdk-19.0.2.0.7-1.rolling.el8

java-latest-openjdk-19.0.2.0.7-1.rolling.el9

USN-5833-1: python-future vulnerability

Killnet Attackers DDoS US and Dutch Hospitals

New UN cybercrime convention has a long way to go in a tight timeframe

Two US Doctors Convicted of $30m Medicare Fraud

QNAP: Patch Critical Remote Code Injection Bug

Trovent Security Advisory 2203-01 / Micro Focus GroupWise transmits session ID in URL

ZDI-23-093: Cacti poll_for_data Command Injection Remote Code Execution Vulnerability