Barracuda Email Security Gateway Appliance (ESG) Vulnerability (CVE-2023-2868)
What is Barracuda Email Security Gateway Appliance (ESG)? The Barracuda Email Security Gateway Appliance is an email security solution that monitors and filters inbound and...
Cadet Blizzard – Destructive Attacks Targeting Multiple Organizations and Entities Around the Globe
FortiGuard Labs is aware of recent reports of a new APT group called Cadet Blizzard. Most recent notable attacks attributed to this group were the...
Friday Squid Blogging: Squid Can Edit Their RNA
This is just crazy: Scientists don’t yet know for sure why octopuses, and other shell-less cephalopods including squid and cuttlefish, are such prolific editors. Researchers...
USN-6175-1: Linux kernel vulnerabilities
Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to...
USN-6174-1: Linux kernel (OEM) vulnerabilities
Jordy Zomer and Alexandra Sandulescu discovered that the Linux kernel did not properly implement speculative execution barriers in usercopy functions in certain situations. A local...
USN-6173-1: Linux kernel (OEM) vulnerabilities
Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this...
USN-6172-1: Linux kernel vulnerabilities
It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause...
Security and Human Behavior (SHB) 2023
I’m just back from the sixteenth Workshop on Security and Human Behavior, hosted by Alessandro Acquisti at Carnegie Mellon University in Pittsburgh. SHB is a...
CIS Benchmarks Community Volunteer Spotlight: Phil Chatham
Phil Chatham has done a lot to support effective security controls for cyber defense as a volunteer of the CIS Benchmarks Community. Hear his story....
Russian National Arrested in Connection With LockBit Ransomware
Ruslan Magomedovich Astamirov allegedly targeted computer systems in the US, Asia, Europe and Africa Read More