Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
2944 Results
MyPPM: Idea Intake
- Staff
MyPPM: Idea Management
- Staff
MyPPM: Create Idea from Template
- Staff
Vulnerability in Foxit PDF Reader Likely Weaponized
H-ISAC reported that a vulnerability in Foxit PDF Reader was likely weaponized. A malicious user could exploit these vulnerabilities to perform cross site scripting and remote code execration. For a complete description of the vulnerabilities and affected systems go to CVE-2022-28672 Detail. IT Security
Vulnerabilities in Nagios Weaponized and Productized
H-ISAC reported that several vulnerabilities in Nagios were weaponized and productized. A malicious user could exploit these vulnerabilities to perform cross site scripting and remote code execration. For a complete description of the vulnerabilities and affected systems go to Nagios XI 5.7.5 Remote Code Execution.
Vulnerabilities in OpenSSH
OpenSSH released security updates to address vulnerabilities in OpenSSH. For a complete description of the vulnerabilities and affected systems go to OpenSSH Release Notes 2/2/23. IT Security Read more about IT Security service offerings.
Vulnerabilities in ImageMagick
Researchers at Metabase Q reported vulnerabilities in ImageMagick. An attacker could exploit these vulnerabilities to perform information disclosure or trigger a Denial of Service (DoS) condition. For a complete description of the vulnerabilities and affected systems go to CVE-2022-44267 and CVE-2022-44268 #6027. IT Security
Feb 2023: Valentine’s Day-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks claiming to be senior executives offering employees a Valentine’s Day-themed reward in appreciation of their work. The message purporting to be from executives might compel users to engage with the supposed employer-related communications. The promise of a reward or gift for the employee’s dedication to the organization entices recipients to click
Feb 2023: Phishing Attacks Distribute IRS Notice-Themed Lures
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using timely tax-themed lures. While the email from field says “Irs notice” and then the name of the organization, the sending address is a Madwire account. The phishing emails contain an HTML attachment allegedly containing delivery details about a tax related USPS letter.
Feb 2023: Employee Termination-Themed Lure Spreads Malware
Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using the threat of employee transfers and terminations as a lure.