Latest

MIL-OSI USA: Linux Kernel Vulnerability

By   /  August 7, 2018  /  24/7 OSI, america, Americas, Computers, Cyber Security, English, hacking, ICT, MIL OSI, Open Source Intel, Privacy, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: Linux Kernel Vulnerability

Source: US Computer Emergency Readiness Team Original release date: August 06, 2018  NCCIC is aware of a Linux kernel vulnerability affecting Linux versions 4.9 and greater. An attacker could exploit this vulnerability to cause a denial-of-service condition. NCCIC encourages users and administrators to review the Vulnerability Note VU #962459 and apply the necessary updates. This […]

Read More →
Latest

MIL-OSI USA: SB18-218: Vulnerability Summary for the Week of July 30, 2018

By   /  August 7, 2018  /  24/7 OSI, Aid, america, Americas, Business, Commerce, Computers, Crude, Cryptocurrencies, Cyber Security, English, Environment, Exploration, Exports, Gas, hacking, ICT, Internet Communications Technology, Media Intelligence, Melanesia, MIL OSI, Oil, Open Source Intel, Resource Exploitation, Resource Exploration, Technology, Trade, United Kingdom, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: SB18-218: Vulnerability Summary for the Week of July 30, 2018

3cx — 3cx The Web server in 3CX version 15.5.8801.3 is vulnerable to Reflected XSS on all stack traces’ propertyPath parameters. 2018-08-03 not yet calculated CVE-2018-14906MISC 3cx — 3cx The Web server in 3CX version 15.5.8801.3 is vulnerable to Information Leakage, because of improper error handling in Stack traces, as demonstrated by discovering a full […]

Read More →
Latest

MIL-OSI USA: Drupal Releases Security Update

By   /  August 3, 2018  /  24/7 OSI, america, Americas, Computers, Cyber Security, English, hacking, ICT, MIL OSI, Open Source Intel, Privacy, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: Drupal Releases Security Update

Source: US Computer Emergency Readiness Team Original release date: August 02, 2018 Drupal has released a security update addressing a vulnerability in Drupal 8.x. A remote attacker could exploit this vulnerability to take control of an affected system. NCCIC encourages users and administrators to review Drupal’s Security Advisory and apply the necessary update. This product […]

Read More →
Latest

MIL-OSI USA: FBI Releases Article on Securing the Internet of Things

By   /  August 3, 2018  /  24/7 OSI, america, Americas, Computers, Cyber Security, English, hacking, ICT, Internet Communications Technology, Internet of Things, MIL OSI, Open Source Intel, Privacy, Technology, Trade, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: FBI Releases Article on Securing the Internet of Things

Source: US Computer Emergency Readiness Team Original release date: August 02, 2018 The Federal Bureau of Investigation (FBI) has released an article on the risks associated with internet-connected devices, commonly referred to as the Internet of Things (IoT). FBI warns that cyber threat actors can use unsecured IoT devices as proxies to anonymously pursue malicious […]

Read More →
Latest

MIL-OSI USA: Cisco Releases Security Update

By   /  August 2, 2018  /  24/7 OSI, america, Americas, Computers, Cyber Security, English, hacking, ICT, MIL OSI, Open Source Intel, Privacy, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: Cisco Releases Security Update

Source: US Computer Emergency Readiness Team Original release date: August 01, 2018 Cisco has released a security update to address a vulnerability in Cisco Prime Collaboration Provisioning. A remote attacker could exploit this vulnerability to cause a denial-of-service condition. NCCIC encourages users and administrators to review the Cisco Security Advisory and apply the necessary update. […]

Read More →
Latest

MIL-OSI USA: Malicious Cyber Activity Targeting ERP Applications

By   /  July 26, 2018  /  24/7 OSI, america, Americas, Business, Commerce, Computers, Cyber Security, English, hacking, ICT, MIL OSI, Open Source Intel, Privacy, Resource Exploitation, Resource Exploration, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: Malicious Cyber Activity Targeting ERP Applications

Source: US Computer Emergency Readiness Team Original release date: July 25, 2018 Digital Shadows Ltd. and Onapsis Inc. have released a report describing an increase in the exploitation of vulnerabilities in Enterprise Resource Planning (ERP) applications. ERP applications help organizations manage critical business processes—such as product lifecycle management, customer relationship management, and supply chain management. […]

Read More →
Latest

MIL-OSI USA: Apache Releases Security Updates for Apache Tomcat

By   /  July 24, 2018  /  24/7 OSI, america, Americas, Computers, Cyber Security, English, hacking, ICT, MIL OSI, Open Source Intel, Privacy, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: Apache Releases Security Updates for Apache Tomcat

Source: US Computer Emergency Readiness Team Original release date: July 23, 2018 The Apache Software Foundation has released security updates to address vulnerabilities in Apache Tomcat versions 9.0.0.M9 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.51, and 7.0.28 to 7.0.86. A remote attacker could exploit one of these vulnerabilities to obtain sensitive information. NCCIC encourages […]

Read More →
Latest

MIL-OSI USA: SB18-204: Vulnerability Summary for the Week of July 16, 2018

By   /  July 24, 2018  /  24/7 OSI, Aid, america, Americas, Banking, Banking and Finance, Business, Commerce, Computers, Cryptocurrencies, Currency Exchange Rates, Cyber Security, English, Exports, fish, hacking, Health, ICT, International Criminal Court, Internet Communications Technology, Melanesia, MIL OSI, Open Source Intel, Republic of Korea, Resource Exploitation, Resource Exploration, Singapore, Technology, Trade, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA, World Trade Organisation  /  Comments Off on MIL-OSI USA: SB18-204: Vulnerability Summary for the Week of July 16, 2018

389-ds-base — 389-ds-base 389-ds-base before versions 1.3.8.5, 1.4.0.12 is vulnerable to a Cleartext Storage of Sensitive Information. By default, when the Replica and/or retroChangeLog plugins are enabled, 389-ds-base stores passwords in plaintext format in their respective changelog files. An attacker with sufficiently high privileges, such as root or Directory Manager, can query these files in […]

Read More →
Latest

MIL-OSI USA: TA18-201A: Emotet Malware

By   /  July 21, 2018  /  24/7 OSI, america, Americas, Banking, Banking and Finance, Computers, Cyber Security, English, Environment, hacking, ICT, International Criminal Court, Internet Communications Technology, Media Intelligence, MIL OSI, Open Source Intel, Resource Exploitation, Resource Exploration, Shipping, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: TA18-201A: Emotet Malware

Source: US Computer Emergency Readiness Team Emotet is an advanced, modular banking Trojan that primarily functions as a downloader or dropper of other banking Trojans. Emotet continues to be among the most costly and destructive malware affecting state, local, tribal, and territorial (SLTT) governments, and the private and public sectors. This joint Technical Alert (TA) […]

Read More →
Latest

MIL-OSI USA: NCCIC Webinar Series on Russian Government Cyber Activity

By   /  July 20, 2018  /  24/7 OSI, america, Americas, Computers, Cyber Security, English, hacking, ICT, MIL OSI, Open Source Intel, Privacy, Resource Exploitation, Resource Exploration, Russia, Technology, United States, United States Federal Government, United States Government, United States of America, US Computer Emergency Readiness Team, USA  /  Comments Off on MIL-OSI USA: NCCIC Webinar Series on Russian Government Cyber Activity

Source: US Computer Emergency Readiness Team Original release date: July 19, 2018 NCCIC will conduct a series of webinars on Russian government cyber activity against critical infrastructure (as detailed in NCCIC Alert TA18-074A), which will feature NCCIC subject matter experts discussing recent cybersecurity incidents, mitigation techniques, and resources that are available to help protect critical […]

Read More →