Condividi

RSS

Piu’ articoli…

• Analisi della postura di sicurezza: guida al confronto tra BAS e penetration test
• CIS Controls e Vulnerability Assessment: guida pratica all’adozione delle best practice
• Analisi della postura di sicurezza: guida completa per rafforzare la cybersecurity
• Deception vs EDR: qual è la migliore strategia di difesa dalle minacce?
• Deception: Ingannare gli Hacker per Proteggere la Tua Rete
• Active Defence Deception: la cybersecurity che batte gli hacker con le loro stesse armi
• Decezione informatica: cos’è, come funziona e perché è fondamentale per la cybersecurity
• CSIRT e SOC: differenze tra gestione degli incidenti e monitoraggio della sicurezza

Categorie …

• Backup as a Service (24)
  • Acronis Cloud Backup (18)
  • Veeam Cloud Connect (3)
• Cloud CRM (1)
• Cloud Server/VPS (23)
• Conferenza Cloud (4)
• Log Management (2)
• Monitoraggio ICT (4)
• Novita' (17)
• ownCloud (7)
• Privacy (8)
• Secure Online Desktop (14)
• Security (203)
  • Cyber Threat Intelligence (CTI) (8)
  • Decemption (4)
  • Ethical Phishing (9)
  • Penetration Test (15)
  • Posture Guard (2)
  • SOCaaS (65)
    • EDR (6)
    • SIEM (12)
    • SOAR (4)
    • UEBA (9)
  • Vulnerabilita' (83)
• Web Hosting (15)

Tags

CSIRT

• PoC pubblico per lo sfruttamento della CVE-2023-42793 (AL03/230928/CSIRT-ITA) Settembre 28, 2023
  Disponibile un Proof of Concept (PoC) per la vulnerabilità CVE-2023-42793 – già sanata dal vendor – presente in Teamcity, piattaforma software CI/CD general-purpose di JetBrains. Tale vulnerabilità, qualora sfruttata, potrebbe permettere a un utente malintenzionato remoto non autenticato, il bypass dei meccanismi di sicurezza e l’esecuzione di codice arbitrario sui server Teamcity.
• Rilevato sfruttamento in rete della CVE-2023-5187 relativa a Google Chrome (AL02/230928/CSIRT-ITA) Settembre 28, 2023
  Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2023-5187 – già sanata dal vendor – presente nel noto browser Chrome di Google.
• Rilevate vulnerabilità in prodotti Cisco (AL01/230928/CSIRT-ITA) Settembre 28, 2023
  Aggiornamenti di sicurezza Cisco sanano alcune vulnerabilità, di cui una con gravità “critica” e 10 con gravità “alta”, presenti in vari prodotti.
• Aggiornamenti di sicurezza per prodotti Mozilla (AL02/230927/CSIRT-ITA) Settembre 27, 2023
  Mozilla ha rilasciato aggiornamenti di sicurezza per sanare molteplici vulnerabilità, di cui 6 con gravità “alta”, nei prodotti Firefox, Firefox ESR e Thunderbird.
• Aggiornamenti di sicurezza Apple (AL01/230927/CSIRT-ITA) Settembre 27, 2023
  Apple ha rilasciato aggiornamenti di sicurezza per sanare molteplici che interessano i prodotti Safari e macOS Sonoma.
• Aggiornamenti Mensili Microsoft (AL09/230613/CSIRT-ITA) - Aggiornamento Settembre 26, 2023
  Microsoft ha rilasciato gli aggiornamenti di sicurezza mensili che risolvono un totale di 78 nuove vulnerabilità, di cui 4 con gravità "critica".
• Aggiornamenti per Elasticsearch (AL01/230925/CSIRT-ITA) Settembre 25, 2023
  Elastic NV rilascia aggiornamenti di sicurezza per sanare una vulnerabilità in Elasticsearch, noto server di ricerca e analisi basato su Lucene. Tale vulnerabilità, qualora sfruttata, potrebbe permettere a un utente malintenzionato la compromissione della disponibilità del servizio sui dispositivi interessati.
• La Settimana Cibernetica del 24 settembre 2023 Settembre 25, 2023
  Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 18 al 24 settembre 2023.
• Vulnerabilità in prodotti QNAP (AL02/230922/CSIRT-ITA) Settembre 22, 2023
  Aggiornamenti di sicurezza QNAP risolvono 2 vulnerabilità con gravità “alta” che interessano i prodotti QTS e Multimedia Console.
• Aggiornamenti di sicurezza Apple (AL01/230922/CSIRT-ITA) Settembre 22, 2023
  Apple ha rilasciato aggiornamenti di sicurezza per sanare 3 vulnerabilità di tipo 0-day che interessano i propri prodotti.

Dark Reading

• CAPTCHAs Easy for Humans, Hard for Bots Settembre 28, 2023
  Proton is aiming for the sweet spot between security, privacy, and accessibility with its CAPTCHA.
• A Preview of Windows 11’s Passkeys Support Settembre 28, 2023
  The latest update to Windows 11 introduces support for passkeys, which provide phishing-resistant passwordless authentication.
• Radiant Logic Announces Expanded Identity Analytics and Data Management Platform Capabilities Settembre 27, 2023
• Fortinet Announces Formation of Veterans Program Advisory Council to Narrow the Cybersecurity Skills Gap With Military Veteran Talent Settembre 27, 2023
• Netscout Identified Nearly 7.9M DDOS Attacks in the First Half of 2023 Settembre 27, 2023
• Researchers Release Details of New RCE Exploit Chain for SharePoint Settembre 27, 2023
  One of the already-patched flaws enables elevation of privilege, while the other enables remote code execution.
• China APT Cracks Cisco Firmware in Attacks Against the US and Japan Settembre 27, 2023
  Sophisticated hackers are rewriting router firmware in real time and hiding their footprints, leaving defenders with hardly a fighting chance.
• Will Government Secure Open Source or Muck It Up? Settembre 27, 2023
  The US government aims to support open source projects, while the European Union seeks to make open source projects liable for their software. Which approach will lead to more security?
• Microsoft Adds Passkeys to Windows 11 Settembre 27, 2023
  It's the latest step in the gradual shift away from traditional passwords.
• Threat Data Feeds and Threat Intelligence Are Not the Same Thing Settembre 27, 2023
  It's important to know the difference between the two terms. Here's why.

Full Disclosure

• [tool] WatchGuard Firebox Web Update Unpacker Settembre 25, 2023
  Posted by retset on Sep 25A small utility for extracting file system images from "sysa-dl" update files. https://github.com/ret5et/Watchguard_WebUI_Unpacker
• APPLE-SA-2023-09-21-6 macOS Ventura 13.6 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-6 macOS Ventura 13.6 macOS Ventura 13.6 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213931. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Additional CVE entries coming soon. Kernel Available for: macOS […]
• APPLE-SA-2023-09-21-7 macOS Monterey 12.7 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-7 macOS Monterey 12.7 macOS Monterey 12.7 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213932. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Additional CVE entries coming soon. Kernel Available for: macOS […]
• APPLE-SA-2023-09-21-5 watchOS 9.6.3 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-5 watchOS 9.6.3 watchOS 9.6.3 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213929. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Kernel Available for: Apple Watch Series 4 and later Impact: A […]
• APPLE-SA-2023-09-21-4 watchOS 10.0.1 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-4 watchOS 10.0.1 watchOS 10.0.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213928. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Kernel Available for: Apple Watch Series 4 and later Impact: A […]
• APPLE-SA-2023-09-21-3 iOS 16.7 and iPadOS 16.7 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-3 iOS 16.7 and iPadOS 16.7 iOS 16.7 and iPadOS 16.7 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213927. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Additional CVE entries coming soon. […]
• APPLE-SA-2023-09-21-2 iOS 17.0.1 and iPadOS 17.0.1 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-2 iOS 17.0.1 and iPadOS 17.0.1 iOS 17.0.1 and iPadOS 17.0.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213926. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Kernel Available for: iPhone XS […]
• APPLE-SA-2023-09-21-1 Safari 16.6.1 Settembre 23, 2023
  Posted by Apple Product Security via Fulldisclosure on Sep 22APPLE-SA-2023-09-21-1 Safari 16.6.1 Safari 16.6.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213930. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. WebKit Available for: macOS Big Sur and Monterey Impact: Processing web […]
• Advisory X41-2023-001: Two Vulnerabilities in OPNsense Settembre 23, 2023
  Posted by X41 D-Sec GmbH Advisories via Fulldisclosure on Sep 22Advisory X41-2023-001: Two Vulnerabilities in OPNsense =========================================================== Highest Severity Rating: High Confirmed Affected Versions: 23.1.11_1, 23.7.3, 23.7.4 Confirmed Patched Versions: Commit 484753b2abe3fd0fcdb73d8bf00c3fc3709eb8b7 Vendor: Deciso B.V. / OPNsense Vendor URL: https://opnsense.org Credit: X41 D-Sec GmbH, Yasar Klawohn and JM Status: Public Advisory-URL:...
• SEC Consult SA-20230918-0 :: Authenticated Remote Code Execution and Missing Authentication in Atos Unify OpenScape Settembre 18, 2023
  Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Sep 18SEC Consult Vulnerability Lab Security Advisory < 20230918-0 > ======================================================================= title: Authenticated Remote Code Execution and Missing Authentication product: Atos Unify OpenScape Session Border Controller Atos Unify OpenScape Branch Atos Unify OpenScape BCF vulnerable version: OpenScape SBC...