11Articles
3Categories
2023-06-22Date
⚠️ VULNERABILITY DISCLOSURE 4[−]
22 JunA Vulnerability in VMware Aria Operations for Networks Could Allow for Remote Code ExecutionA vulnerability has been discovered VMware Aria Operations for Networks which could allow for remote code execution. VMware Aria Operations for Networks is a network monitoring tool that collects and analyzes metrics, APIs, configurations, metadata, integrations, telemetry netflo…CISECURITY.ORG
22 JunSMS Phishers Harvested Phone Numbers, Shipment Data from UPS Tracking ToolThe United Parcel Service (UPS) says fraudsters have been harvesting phone numbers and other information from its online shipment tracking tool in Canada to send highly targeted SMS phishing (a.k.a. "smishing") messages that spoofed UPS and other top brands. The missives addresse…KREBSONSECURITY.COM
22 JunGoogle Cloud Awards $313,337 in 2022 VRP PrizesAnthony Weems, Information Security Engineer 2022 was a successful year for Google's Vulnerability Reward Programs (VRPs), with over 2,900 security issues identified and fixed, and over $12 million in bounty rewards awarded to researchers. A significant amount of these vulnerabil…SECURITY.GOOGLEBLOG.COM
22 JunMaltego: Check how exposed you are onlineA primer on how to use this powerful tool for uncovering and connecting information from publicly available sourcesWELIVESECURITY.COM
📢 SECURITY ADVISORIES 5[−]
22 JunSSDF and IoT Cybersecurity Guidance: Building Blocks for IoT Product SecurityNIST’s IoT cybersecurity guidance has long recognized the importance of secure software development (SSDF) practices, highlighted by the NIST IR 8259 series—such as the recommendation for documentation in Action 3.d of NIST IR 8259B, that manufacturers have considered and documen…NIST.GOV
22 JunSSDF and IoT Cybersecurity Guidance: Building Blocks for IoT Product SecurityNIST’s IoT cybersecurity guidance has long recognized the importance of secure software development (SSDF) practices, highlighted by the NIST IR 8259 series —such as the recommendation for documentation in Action 3.d of NIST IR 8259B , that manufacturers have considered and docum…NIST.GOV
22 JunCyber Threat Report: UK Legal SectorAn updated report from the NCSC explaining how UK law firms - of all sizes - can protect themselves from common cyber threats.NCSC.GOV.UK
🕵️ THREAT INTELLIGENCE 2[−]
22 JunAgentless Workload Scanning Gets Supercharged with Malware ScanningEnterprises now have 53% of their cloud workloads hosted on public clouds, according to our recent State of Cloud-Native Security Report 2023. The post Agentless Workload Scanning Gets Supercharged with Malware Scanning appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
22 JunKubernetes Grey Zone: Risks in Managed Cluster Middlewaresubmitted by 0xCBE to cloudsecurity 2 points | 0 comments https://www.wiz.io/blog/kubernetes-grey-zone-risks-in-managed-cluster-middlewareWIZ.IO