#RSAC: ISACA’s New Ransomware Incident Checklist to Aid Cyber Pros
ISACA’s Rob Clyde tells Infosecurity about the role of the guidance as well as new findings about cyber insurance Read More
Evasive Panda’s Backdoor MgBot Delivered Via Chinese Software Updates
Most of the plugins are designed to steal information from highly popular Chinese applications Read More
USN-6045-1: Linux kernel vulnerabilities
It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker...
Critical Flaw Patched in VMware Workstation and Fusion
A malicious actor with local admin privileges could exploit the vulnerability to escape from the VM Read More
USN-6044-1: Linux kernel vulnerabilities
It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker...
#RSAC: Google Cloud Introduces Generative AI to Security Tools as LLMs Reach Critical Mass
Google adds its security large language model to a number of its solutions at the RSA Conference 2023 Read More
Alloy Taurus Hackers Update PingPull Malware to Target Linux Systems
According to Unit 42, the variant uses the same AES key as the original Windows PE malware Read More
CVE-2022-25275
In some situations, the Image module does not correctly check access to image files not stored in the standard public files directory when generating derivative...
CVE-2022-25274
Drupal 9.3 implemented a generic entity access API for entity revisions. However, this API was not completely integrated with existing permissions, resulting in some possible...
CVE-2022-25273
Drupal core's form API has a vulnerability where certain contributed or custom modules' forms may be vulnerable to improper input validation. This could allow an...