Security Affairs

JULY 23, 2023

Cybersecurity and Infrastructure Security Agency (CISA) this week warned of cyber attacks against Citrix NetScaler Application Delivery Controller (ADC) and Gateway devices exploiting recently discovered zero-day CVE-2023-3519. Exploits of CVE-2023-3519 on unmitigated appliances have been observed.

Cybersecurity 91

Cybersecurity Cloud Encryption Passwords 91

Security Affairs

DECEMBER 1, 2023

Cybersecurity and Infrastructure Security Agency (CISA) added ownCloud and Google Chrome vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. The fact that the issue was discovered by Google TAG suggests it was exploited by a nation-state actor or by a surveillance firm. x before 0.2.1

IT 94

IT Libraries Cybersecurity Passwords 94

Security Affairs

APRIL 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 75

Security Ransomware Data breaches Cybersecurity 75

Security Affairs

DECEMBER 8, 2020

The Apache Software Foundation has released a security update to address a “possible remote code execution” flaw in Struts 2 that is related to the OGNL technology. . The remote code execution flaw, tracked as CVE-2020-17530, resides in forced OGNL evaluation when evaluated on raw user input in tag attributes. to Struts 2.5.25

Cybersecurity 111

Cybersecurity Security IT Information Security 111

Collibra

JANUARY 23, 2023

Nowadays zero-trust is being recognized as a principle and a best practice that can be applied to broad aspects of security, accelerated by industry’s innovations. It sets out clear visions and specific actions around the five pillars of security: identity, devices, networks, application & workloads, and data.

Government 52

Government Access Authentication Security 52

Security Affairs

JUNE 6, 2022

The actors are positioning themselves as an elite cyber offensive group targeting NATO infrastructure and performing cyberespionage to steal sensitive data. The actors are positioning themselves as an elite cyber offensive group targeting NATO infrastructure and performing cyberespionage to steal sensitive data.

Government 140

Government Cybersecurity IoT Security 140

Security Affairs

JUNE 5, 2022

Proof-of-concept exploits for the critical CVE-2022-26134 vulnerability in Atlassian Confluence and Data Center servers are available online. Proof-of-concept exploits for the critical CVE-2022-26134 flaw, affecting Atlassian Confluence and Data Center servers, have been released. 23 unique IPs so far.

Cybersecurity 124

Cybersecurity IoT Security IT 124