Sean McCown has been a part of the CIS Benchmarks community for five years contributing to the new processes and bug fixes of CIS Benchmarks.
Daily Archives: August 16, 2023
CVE-2022-4894
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.
USN-6295-1: Podman vulnerability
It was discovered that Podman incorrectly handled certain supplementary groups.
An attacker could possibly use this issue to expose sensitive information
or execute binary code.
Clorox Operations Disrupted By Cyber-Attack
Risk Mitigation: The Cornerstone of Your Audit Preparations
CIS CISO, Sean Atkinson explains how you can embed risk mitigation strategies into your audit preparations with the help of a CIS SecureSuite Membership.
Hacked electronic sign declares “Putin is a dickhead” as Russian ruble slumps
Someone clearly isn’t very impressed with Vladimir Putin, as the Russian economy continues to tank in the wake of sanctions.
Mass-Exploitation Campaign Targets Citrix NetScalers With Backdoors
The attack was unveiled by cybersecurity firm Fox-IT in collaboration with the DIVD
qt5-qtbase-5.15.10-5.fc38
FEDORA-2023-04d519d0b3
Packages in this update:
qt5-qtbase-5.15.10-5.fc38
Update description:
Security fix for CVE-2023-37369
Scammers Exploit Hacked Websites For Phishing
Kaspersky explained one common strategy is the hacking of abandoned or poorly maintained websites
USN-6294-1: HAProxy vulnerability
Ben Kallus discovered that HAProxy incorrectly handled empty Content-Length
headers. A remote attacker could possibly use this issue to manipulate the
payload and bypass certain restrictions.