Aggregator

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2021-44207 Acclaim Systems USAHERDS Use of Hard-Coded Credentials Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

The cybersecurity research team of ANY.RUN found and analyzed a bunch of emerging threats with the help of our mighty Interactive Sandbox and Threat Intelligence Lookup. We’ve been sharing their findings via X and in our blog. Here is a summary on the most interesting insights from December 2024. Phishing Campaigns targeting Microsoft’s Azure Blob […]

The post 5 Major Cyber Attacks in December 2024 appeared first on ANY.RUN's Cybersecurity Blog.

最高人民检察院、公安部近日联合督办了一批特大跨境电信网络诈骗犯罪案件，提出要全力缉捕、从严惩治跨境电信诈骗犯罪集团头目、幕后“金主”和骨干成员，有力斩断犯罪链条。

消费者在享受数字化时代带来的便利时，个人信息也不可避免地留存在了不同的服务平台上。每年盗取、滥用个人敏感信息的犯罪事件并不罕见，到底是谁在背后收集这些数据？这些数据又是怎么流出的？

12月中旬，北约合作网络防御卓越中心在爱沙尼亚首都塔林举行代号“十字剑2024”的网络作战演习。该中心发布消息称，此次演习主要聚焦在与网络高度相关的领域进行演练，旨在了解对手的思考方式并掌握攻防技能。

近日，中国信息通信研究院发布了《数字技术适老化发展报告（2024年）》。

第七期“促进数据要素流通 守好安全合规红线”主题沙龙将于12月27日与您线上相约。

当地时间12月22日，美国当选总统特朗普在亚利桑那州首府菲尼克斯发表讲话时表示，他赞成TikTok在美国继续运营一段时间。

2025年1月20日起施行。

点击文章，了解最前沿的国际网安资讯！

Minister van Defensie Ruben Brekelmans bracht vanwege de Kerst een driedaags bezoek aan de Nederlandse eenheden in Bagdad, op Al-Asad Airbase en in Erbil. Hij bedankte ze voor hun belangrijke werk voor de internationale veiligheid. ‘Een stabiel en veilig Irak is van groot belang, voor de regio én voor Nederland’, zo merkte hij op. De NAVO Missie in Irak (NMI) staat momenteel onder leiding van de Nederlandse Luitenant-Generaal Cas Schreurs.

A vulnerability was found in Citrix MetaFrame 1.0/1.8 and classified as critical. This issue affects some unknown processing of the component ICA Protocol Handler. The manipulation leads to missing encryption of sensitive data. The identification of this vulnerability is CVE-2000-0244. The attack may be initiated remotely. Furthermore, there is an exploit available. Due to its background and reception, this vulnerability has an historic impact. It is recommended to upgrade the affected component.

0 из 73 обнаружений – антивирусы бессильны перед новой угрозой.

A vulnerability was found in Invensys Wonderware Information Server 4.0. It has been classified as critical. Affected is an unknown function of the component Access Restriction. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2012-0228. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability has been found in Invensys Wonderware Information Server 4.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2012-0225. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Invensys Wonderware Information Server 4.0 and classified as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2012-0226. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic was found in Oracle Fusion Middleware 9.2.4/10.0.2/10.3.5/10.3.6/12.1.1. This vulnerability affects unknown code of the component WebLogic Server. The manipulation leads to improper input validation. This vulnerability was named CVE-2011-5035. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.