Aggregator

Today, the Biden-Harris Administration announced that the U.S. Department of Commerce and Wolfspeed, Inc. have signed a non-binding preliminary memorandum of terms (PMT) to provide up to $750 million in proposed direct funding under the CHIPS and

Today, CISA published the Framing Software Component Transparency, created by the Software Bill of Materials (SBOM) Tooling & Implementation Working Group, one of the five SBOM community-driven workstreams facilitated by CISA. CISA’s community-driven working groups publish documents and reports to advance and refine SBOM and ultimately promote adoption. This resource serves as the detailed foundation of SBOM, defining SBOM concepts and related terms and offering an updated baseline of how software components are to be represented. This document serves as a guide on the processes around SBOM creation.

For more information on all things SBOM, please visit CISA’s Software Bill of Materials website.

CISA released two Industrial Control Systems (ICS) advisories on October 15, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-289-01 Siemens Siveillance Video Camera
• ICSA-24-289-02 Schneider Electric Data Center Expert

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-30088 Microsoft Windows Kernel TOCTOU Race Condition Vulnerability
• CVE-2024-9680 Mozilla Firefox Use-After-Free Vulnerability
• CVE-2024-28987 SolarWinds Web Help Desk Hardcoded Credential Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

The new center will support U.S. engagement in international standardization for critical and emerging technologies.

This blog is part of a larger NIST series during the month of October for Cybersecurity Awareness Month , called 'Staff Stories Spotlight.' Throughout the month of October this year, Q&A style blogs will be published featuring some of our unique staff members who have interesting backgrounds, stories to tell, and projects in the world of cybersecurity. This year’s Cybersecurity Awareness Month theme is ‘Secure our World.’ How does this theme resonate with you, as someone working in cybersecurity? Now more than ever, the use of technology is central to our lives. It is the means by which we are

Вебинар Positive Technologies состоится 24 октября в 14:00 (мск).

Иранские хакеры подстегнули республиканцев воспользоваться военными технологиями.

10.31相约深圳，不见不散！

Last week, CISA added CVE-2024-23113 – a critical vulnerability that allows unauthenticated remote code/command execution on unpatched Fortinet FortiGate firewalls – to its Known Exploited Vulnerabilities catalog, thus confirming that it’s being leveraged by attackers in the wild. The Shadowserver Foundation shared on Sunday that there are still 87,000+ internet-facing Fortinet devices likely vulnerable to the flaw. About CVE-2024-23113 CVE-2024-23113, a format string vulnerability that affects the FortiOS FGFM (FortiGate to FortiManager) daemon and can … More →

The post 87,000+ Fortinet devices still open to attack, are yours among them? (CVE-2024-23113) appeared first on Help Net Security.

The sophisticate campaign, ErrorFather, employs keylogging, virtual networks and a domain generation algorithm to target Android users

股市是一个充满机遇与挑战的投资市场，尤其是中国 A 股市场，因其波动性大、散户占比较高等特点，常常让投资者在牛市与熊市的反复轮回中迷失方向。对于想在股市中稳步

A vulnerability has been found in Acronis Cyber Protect 16 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cleartext transmission of sensitive information. This vulnerability was named CVE-2024-49387. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in MB Connect Line mbNET.mini up to 2.2.13. This affects an unknown part. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2024-45271. An attack has to be approached locally. There is no exploit available.

A vulnerability, which was classified as critical, has been found in MB Connect Line mbNET.mini, mbNET, mbNET.rokey, mbNET HW1, mbSPIDER, mbCONNECT24 and mymbCONNECT24 up to 2.2.13. Affected by this issue is some unknown functionality. The manipulation leads to weak encoding for password. This vulnerability is handled as CVE-2024-45273. The attack needs to be approached locally. There is no exploit available.

A vulnerability classified as problematic was found in Acronis Cyber Protect 16. Affected by this vulnerability is an unknown functionality. The manipulation leads to authorization bypass. This vulnerability is known as CVE-2024-49388. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in MB Connect Line mbNET.mini up to 2.2.13. It has been rated as very critical. This issue affects some unknown processing. The manipulation leads to hard-coded credentials. The identification of this vulnerability is CVE-2024-45275. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in MB Connect Line mbNET.mini up to 2.2.13. Affected is an unknown function of the file /tmp. The manipulation leads to files or directories accessible. This vulnerability is traded as CVE-2024-45276. It is possible to launch the attack remotely. There is no exploit available.

A group of hackers reportedly sells sensitive data stolen from Cisco Systems, Inc. The breach, allegedly carried out by a collective known as IntelBroker in collaboration with EnergyWeaponUser and zjj, has raised significant concerns across the tech industry. Details of the Breach According to a post on social media platform X by user H4ckManac, the […]

The post Hackers Allegedly Selling Data Stolen from Cisco appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in MB connect line mbCONNECT24 and mymbCONNECT24. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to use of weak credentials. This vulnerability was named CVE-2024-45272. The attack can be initiated remotely. There is no exploit available.