Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
3163 Results
May 2023: AI-Themed Phishing Lures Distribute Threats
Threat Alert: What to Watch For Cybercriminals have launched a campaign distributing malware with an AI-themed lure. The lure purports to be from an “Information Technology Manager” regarding a mandatory system update for employees. The email body directs recipients as to how they can download the new AI-powered software.
May 2023: URL Shortening Service Widely Abused in Attacks
Threat Alert: What to Watch For Cybercriminals have started using the URL shortening service clck[.]ru in widespread phishing attacks in April. The nature of these attacks and the lures used vary greatly.
May 2023: Phishing Attacks Deliver Remote Access Malware
Threat Alert: What to Watch For
Vulnerabilities Affecting the SolarWinds Platform
SolarWinds released security updates to address vulnerabilities in the SolarWinds Platform. For a complete description of the vulnerabilities and affected systems go to SolarWinds Security Vulnerabilities. IT Security Read more about IT Security service offerings.
Vulnerabilities in APC's Easy UPS Online Monitoring Software
APC has released security updates to address vulnerabilities in APC's Easy UPS Online Monitoring Software. A remote attacker could exploit these vulnerabilities to take control of an affected device.
Actively exploited High Vulnerability in PaperCutNG
PaperCutNG released a security update to address an actively exploited High vulnerability in the SetupCompleted component in PaperCutNG 22.0.8 and earlier. An unauthorized user could exploit this vulnerability to bypass authentication and execute arbitrary code with elevated privileges.
Moderately Critical Vulnerability in Drupal Core
Drupal has released a security update to address a Moderately Critical vulnerability in Drupal Core. An unauthorized user could gain access to private files that they should not have access to. For a complete description of the vulnerabilities and affected systems go to Drupal Security Advisories. IT Security
Vulnerabilities in Multiple Cisco Products
Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Cisco Security Advisories and Alerts. IT Security
Critical Vulnerabilities in VMware Aria Operations for Logs (formerly vRealize Log Insight)
VMware has released security updates to address Critical vulnerabilities in VMware Aria Operations for Logs (formerly vRealize Log Insight). A malicious attacker could exploit this vulnerability to execute arbitrary code as root. For a complete description of the vulnerabilities and affected systems go to VMSA-2023-0007. IT Security