UCSF IT Technology

Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using timely tax-themed lures.  While the email from field says “Irs notice” and then the name of the organization, the sending address is a Madwire account. The phishing emails contain an HTML attachment allegedly containing delivery details about a tax related USPS letter.

Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using the threat of employee transfers and terminations as a lure.

Atlassian has released security updates to address a critical vulnerability in Jira Service Management Server and Data Center. The vulnerability can allow an attacker to impersonate another user and gain access to a Jira Service Management instance under certain circumstances. For a complete description of the vulnerabilities and affected systems go to CVE-2023-22501 Detail. IT Security

Mandiant reported a vulnerability in Symantec Endpoint Protection for Windows. Symantec Endpoint Protection (Windows) agent may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

MS-ISAC has released a cybersecurity advisory about a vulnerability in vBulletin. A malicious user could exploit this vulnerability to perform remote command execution. For a complete description of the vulnerabilities and affected systems go to CVE-2023-25135 Detail. IT Security Read more about IT Security service offerings.

VMware has released a security update to address vulnerabilities in VMware vRealize Operations. A malicious user could exploit this vulnerability to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to  VMSA-2023-0002. IT Security

Cisco has released security updates to address Medium and High vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Cisco Security Advisories page. IT Security

Drupal has released a security update to address a vulnerability in Drupal Apigee Edge. An attacker could exploit this vulnerability to bypass access authorization or disclose sensitive information. For a complete description of the vulnerabilities and affected systems go to SA-CONTRIB- 2023-005. IT Security

QNAP released security updates to address a Critical vulnerability in QTS and QuTS hero. If exploited, this vulnerability allows remote attackers to inject malicious code. For a complete description of the vulnerabilities and affected systems go to QNAP Advisory. IT Security Read more about IT Security service offerings.

Ubuntu released multiple security updates in January for various Ubuntu products. For a complete description of the vulnerabilities and affected systems go to Ubuntu January 2023 Archives by date. IT Security Read more about IT Security service offerings.