Read Time:4 Second
The group previously targeted government agencies and think tanks in Asia and Europe
Daily Archives: February 14, 2023
Upcoming Speaking Engagements
Read Time:25 Second
This is a current list of where and when I am scheduled to speak:
I’m speaking at Mobile World Congress 2023 in Barcelona, Spain, on March 1, 2023 at 1:00 PM CET.
I’m speaking on “How to Reclaim Power in the Digital World” at EPFL in Lausanne, Switzerland, on Thursday, March 16, 2023, at 5:30 PM.
I’m speaking at IT-S Now 2023 in Vienna, Austria, on June 1-2, 2023.
The list is maintained on this page.
CVE-2022-22564
Read Time:11 Second
Dell EMC Unity versions before 5.2.0.0.5.173 , use(es) broken cryptographic algorithm. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information.
CVE-2021-46023
Read Time:8 Second
An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash.
Hackers Breach Pepsi Bottling Ventures’ Network
Read Time:4 Second
Experts say the delay in notifying customers left data potentially open to compromise
vim-9.0.1307-1.fc36
Read Time:11 Second
FEDORA-2023-93fb5b08eb
Packages in this update:
vim-9.0.1307-1.fc36
Update description:
2169641 – Syntax highlight for sh files broken
The newest upstream commit
Security fixes for CVE-2022-47024, CVE-2023-0433
EnterpriseDB adds Transparent Data Encryption to PostgreSQL
Read Time:6 Second
The new Transparent Data Encryption (TDE) feature will be shipped along with the company’s enterprise version of its database.
USN-5868-1: Django vulnerability
Read Time:9 Second
Jakob Ackermann discovered that Django incorrectly handled certain file
uploads. A remote attacker could possibly use this issue to cause Django to
consume resources, leading to a denial of service.
Open Systems launches Ontinue MDR division, new MXDR service Ontinue ION
Read Time:34 Second
Managed security services provider Open Systems has announced the launch of Ontinue, a new managed detection and response (MDR) division. It has also unveiled a new managed extended detection and response (MXDR) service, Ontinue ION, along with a new add-on service called Managed Vulnerability Mitigation (MVM).
Ontinue ION offers advanced capabilities that enable faster detection and response, a deeper understanding of a customer’s environment and the ability to maximize Microsoft security investments for greater efficiency, according to the firm. MVM helps customers reduce risk by highlighting the vulnerabilities that pose the greatest threats via intelligence and understanding of users’ environments, Open Systems added.
OpenImageIO-2.4.8.1-1.fc37
Read Time:31 Second
FEDORA-2023-c3d65c8f7b
Packages in this update:
OpenImageIO-2.4.8.1-1.fc37
Update description:
Release 2.4.8.1 (13 Feb 2023) — compared to 2.4.8.0
Fix(targa): guard against corrupted tga files Fixes TALOS-2023-1707 /
CVE-2023-24473, TALOS-2023-1708 / CVE-2023-22845. #3768
Fix: race condition in TIFF reader, fixes TALOS-2023-1709 / CVE-2023-24472.
Windows: Fix unresolved external symbol for MSVS 2017 #3763
Fix: Initialize OpenEXROutput::m_levelmode in init(). #3764
Fix: improve thread safety for concurrent tiff loads. #3767
Fix(fits): Make sure to close if open fails to find right magic number.