MATLOCK.CA
228Articles
9Categories
2023-10-10Date
🚨
CISA Adds Five Known Vulnerabilities to CatalogCISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation: CVE-2023-21608 Adobe Acrobat and Reader Use-After-Free Vulnerability CVE-2023-20109 Cisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds …
KEVCISA.GOV — Tue, 10 Oct 23 1
🚨
#StopRansomware: AvosLocker Ransomware (Update)SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically …
KEVCISA.GOV — 10 Oct 2023
πŸ›
Credential Harvesting Campaign Targets Unpatched NetScaler Instances
SECURITYWEEK.COM — 10 Oct 2023
πŸ›
libcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE Attacks
THEHACKERNEWS.COM — 10 Oct 2023
πŸ›
libcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE Attacks
THEHACKERNEWS.COM — 10 Oct 2023
πŸ›
Citrix Devices Under Attack: NetScaler Flaw Exploited to Capture User Credentials
THEHACKERNEWS.COM — 10 Oct 2023
πŸ›
D-Link Wi-Fi Range Extender Vulnerability Let Attackers Inject Remote Code
GBHACKERS.COM — 10 Oct 2023
πŸ›
HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks
THEHACKERNEWS.COM — 10 Oct 2023
πŸ›
Microsoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/2
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
Previously Unseen Grayling APT Targets Multiple Organizations in Taiwan
SYMANTEC-ENTERPRISE-BLOGS.SECURITY.COM — 10 Oct 2023
πŸ›
CVE-2023-35349 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36902 Windows Runtime Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-38171 Microsoft QUIC Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36737 Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41763 Skype for Business Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41765 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41766 Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41767 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41768 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41769 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41770 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41771 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41772 Win32k Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41773 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-41774 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36732 Win32k Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36731 Win32k Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36730 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36729 Named Pipe File System Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36728 Microsoft SQL Server Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36726 Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36725 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36724 Windows Power Management Service Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36723 Windows Container Manager Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36722 Active Directory Domain Services Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36721 Windows Error Reporting Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36720 Windows Mixed Reality Developer Tools Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36718 Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36717 Windows Virtual Trusted Platform Module Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36713 Windows Common Log File System Driver Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36712 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36711 Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36710 Windows Media Foundation Core Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36709 Microsoft AllJoyn API Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36707 Windows Deployment Services Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36706 Windows Deployment Services Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36704 Windows Setup Files Cleanup Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36703 DHCP Server Service Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36702 Microsoft DirectMusic Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36701 Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36698 Windows Kernel Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36697 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36606 Microsoft Message Queuing Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36605 Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36603 Windows TCP/IP Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36602 Windows TCP/IP Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36598 Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36596 Remote Procedure Call Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36594 Windows Graphics Component Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36593 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36592 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36591 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36590 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36589 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36585 Active Template Library Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36584 Windows Mark of the Web Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36583 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36582 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36581 Microsoft Message Queuing Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36579 Microsoft Message Queuing Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36578 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36577 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36576 Windows Kernel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36575 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36574 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36573 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36572 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36571 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36570 Microsoft Message Queuing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36569 Microsoft Office Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36568 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36567 Windows Deployment Services Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36564 Windows Search Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36563 Microsoft WordPad Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36561 Azure DevOps Server Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36557 PrintHTML API Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36438 Windows TCP/IP Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36435 Microsoft QUIC Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36434 Windows IIS Server Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36433 Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36431 Microsoft Message Queuing Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36429 Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36420 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36419 Azure HDInsight Apache Oozie Workflow Scheduler Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36417 Microsoft SQL ODBC Driver Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-44487 MITRE: CVE-2023-44487 HTTP/2 Rapid Reset Attack
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-29348 Windows Remote Desktop Gateway (RD Gateway) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-38166 Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-38159 Windows Graphics Component Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36790 Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36789 Skype for Business Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36786 Skype for Business Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36785 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36780 Skype for Business Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36778 Microsoft Exchange Server Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36776 Win32k Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36743 Win32k Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36566 Microsoft Common Data Model SDK Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36565 Microsoft Office Graphics Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36436 Windows MSHTML Platform Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36418 Azure RTOS GUIX Studio Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36416 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36415 Azure Identity SDK Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
CVE-2023-36414 Azure Identity SDK Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
Critically Close to Zero(Day): Exploiting Microsoft Kernel Streaming Service
SECURITYINTELLIGENCE.COM — 10 Oct 2023
πŸ›
CVE-2023-44487 - HTTP/2 Rapid Reset Attack Impacting F5 NGINX Products
F5.COM — 10 Oct 2023
πŸ›
HTTP/2 Rapid Reset Vulnerability, CVE-2023-44487
KEVCISA.GOV — Tue, 10 Oct 23 1
πŸ›
Built-in weakness in HTTP/2 protocol exploited for massive DDoS attacks
CSOONLINE.COM — 10 Oct 2023
πŸ›
Citrix Releases Security Updates for Multiple Products
CISA.GOV — Tue, 10 Oct 23 1
πŸ›
CVE-2022-41127 Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 10 Oct 2023
πŸ›
Microsoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/2
MSRC.MICROSOFT.COM — 10 Oct 2023
⚠️
Credentials Hard-Coded in Cisco Emergency Location Tracker
DATABREACHTODAY.CO.UK — 2023-10-10
⚠️
Google Bug Bounty Program Expands to Chrome V8, Google Cloud
INFOSECURITY-MAGAZINE.COM — 10 Oct 2023
⚠️
Update: 23andMe Scraping Incident Leaked Data on 1.3 Million Users of Ashkenazi and Chinese Descent
THERECORD.MEDIA — 10 Oct 2023
⚠️
MacOS β€œDirtyNIB” Vulnerability: Let Attackers Execute Malicious Code
GBHACKERS.COM — 10 Oct 2023
⚠️
5 practical recommendations implementing zero trust
CSOONLINE.COM — 10 Oct 2023
⚠️
The undeniable benefits of making cyber resiliency the new standard
CSOONLINE.COM — 10 Oct 2023
⚠️
New Magecart Campaign Alters 404 Error Pages to Steal Shoppers' Credit Cards
THEHACKERNEWS.COM — 10 Oct 2023
⚠️
Update: Caesars Entertainment Says Social-Engineering Attack Behind August Breach
CYBERSECURITYDIVE.COM — 10 Oct 2023
⚠️
Mirai-based DDoS Attackers Aggressively Adopted New Router Exploits
GBHACKERS.COM — 10 Oct 2023
⚠️
Cobalt Strike 4.9 Released: What’s New!
GBHACKERS.COM — 10 Oct 2023
⚠️
Source Code of the 2020 Variant of HelloKitty Ransomware Leaked on Cybercrime Forum
SECURITYAFFAIRS.COM — 10 Oct 2023
⚠️
74% of CEOs Concerned About Their Organization's Ability to Protect Against Cyber Attacks, Despite Seeing Cybersecurity as Critical
KNOWBE4.COM — 10 Oct 2023
⚠️
Economic challenges tighten CISO compensation: IANS study
CSOONLINE.COM — 10 Oct 2023
⚠️
Gutsy debuts with data-driven security governance tool
CSOONLINE.COM — 10 Oct 2023
⚠️
Veza releases new IGA solution to enhance identity security
CSOONLINE.COM — 10 Oct 2023
⚠️
R2R Stomping – New Method to Run the Hidden Code in Binaries
GBHACKERS.COM — 10 Oct 2023
⚠️
β€˜HTTP/2 Rapid Reset’ Zero-Day Exploited to Launch Largest DDoS Attacks in History
SECURITYWEEK.COM — 10 Oct 2023
⚠️
One-Click GNOME Exploit Could Pose Serious Threat to Linux Systems
SECURITYWEEK.COM — 10 Oct 2023
⚠️
Rapid Reset Zero Day Exploited To Launch Largest DDoS Attacks In History
PACKETSTORMSECURITY.COM — 10 Oct 2023
⚠️
New 'HTTP/2 Rapid Reset' zero-day attack breaks DDoS records
KEVBLEEPINGCOMPUTER.COM — 10 Oct 2023
⚠️
Hacktivists send fake nuclear attack warning via Israeli Red Alert app
BITDEFENDER.COM — 10 Oct 2023
⚠️
Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal
SECURITYWEEK.COM — 10 Oct 2023
⚠️
CISA Releases One Industrial Control Systems Advisory
CISA.GOV — Tue, 10 Oct 23 1
⚠️
CISA, FBI, NSA, and Treasury Release Guidance on OSS in IT/ICS Environments
CISA.GOV — Tue, 10 Oct 23 1
⚠️
Shufflecake – Hidden Linux Filesystems to Store Sensitive Data
GBHACKERS.COM — 10 Oct 2023
⚠️
Shifting Focus to Make DevSecOps Successful - Janet Worthington - ASW #258
YOUTUBE.COM — 2023-10-10
⚠️
Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop
SECURITYWEEK.COM — 10 Oct 2023
⚠️
CISA, Government, and Industry Partners Publish Fact Sheet for Organizations Using Open Source Software
CISA.GOV — Tue, 10 Oct 23 1
⚠️
IZ1H9 Campaign Enhances Its Arsenal with Scores of Exploits
FORTINET.COM — 10 Oct 2023
⚠️
Vanta bakes generative AI into core security and compliance product
CSOONLINE.COM — 10 Oct 2023
⚠️
Microsoft October 2023 Patch Tuesday fixes 3 zero-days, 104 flaws
KEVBLEEPINGCOMPUTER.COM — 10 Oct 2023
⚠️
Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business
KEVSECURITYWEEK.COM — 10 Oct 2023
⚠️
October 2023 Microsoft Patch Tuesday Summary, (Tue, Oct 10th)
ISC.SANS.EDU — 10 Oct 2023
⚠️
Microsoft Exchange gets β€˜better’ patch to mitigate critical bug
BLEEPINGCOMPUTER.COM — 10 Oct 2023
⚠️
Arctic Wolf acquires cybersecurity automation platform Revelstoke
TECHCRUNCH.COM — 10 Oct 2023
⚠️
Mirai DDoS malware variant expands targets with 13 router exploits
BLEEPINGCOMPUTER.COM — 10 Oct 2023
⚠️
Microsoft Releases October 2023 Security Updates
CISA.GOV — Tue, 10 Oct 23 1
⚠️
Critical Patches Issued for Microsoft Products, October 10, 2023
CISECURITY.ORG — 10 Oct 2023
⚠️
Patch Tuesday, October 2023 Edition
KREBSONSECURITY.COM — 10 Oct 2023
⚠️
Microsoft Blames Nation-State Threat Actor for Confluence Zero-Day Attacks
SECURITYWEEK.COM — 10 Oct 2023
πŸ“‹
Windows 11 KB5031354 cumulative update released with new features
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“’
Cybersecurity Awareness Month 2023 Blog Series | Using Strong Passwords and a Password Manager
NIST.GOV — 10 Oct 2023
πŸ“’
IBM security advisory (AV23-610)
CYBER.GC.CA — 2023-10-10
πŸ“’
Dell security advisory (AV23-609)
CYBER.GC.CA — 2023-10-10
πŸ“’
Ubuntu security advisory (AV23-611)
CYBER.GC.CA — 2023-10-10
πŸ“’
Ukraine Publishes Road Map for AI Regulation
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ“’
SAP security advisory – October 2023 monthly rollup (AV23-613)
CYBER.GC.CA — 2023-10-10
πŸ“’
[Control systems] Schneider Electric security advisory (AV23-612)
CYBER.GC.CA — 2023-10-10
πŸ“’
Microsoft security advisory – October 2023 monthly rollup (AV23-615)
CYBER.GC.CA — 2023-10-10
πŸ“’
Citrix security advisory (AV23-614)
CYBER.GC.CA — 2023-10-10
πŸ“’
Fortinet security advisory (AV23-616)
CYBER.GC.CA — 2023-10-10
πŸ“’
Scaling BeyondCorp with AI-Assisted Access Control Policies
SECURITY.GOOGLEBLOG.COM — 2023-10-10
πŸ”₯
What to do if you’ve clicked on a phishing link or talked to scammers | Kaspersky official blog
KASPERSKY.COM — 10 Oct 2023
πŸ”₯
New Magecart Campaign Alters 404 Error Pages to Steal Shoppers' Credit Cards
THEHACKERNEWS.COM — 10 Oct 2023
πŸ”₯
Cable Giant Volex Targeted in Cyberattack
SECURITYWEEK.COM — 10 Oct 2023
πŸ”₯
Payment Gateway Provider Safexpay Technology Allegedly Hacked in a Nearly $2 Billion Scam
CISO.ECONOMICTIMES.INDIATIMES.COM — 10 Oct 2023
πŸ”₯
Thousands Of WordPress Sites Have Been Hacked Through tagDiv Vuln
PACKETSTORMSECURITY.COM — 10 Oct 2023
πŸ”₯
23andMe resets user passwords after genetic data posted online
TECHCRUNCH.COM — 10 Oct 2023
πŸ”₯
Air Europa Customers Urged to Cancel Cards Following Hack on Payment System
THERECORD.MEDIA — 10 Oct 2023
πŸ”₯
Air Europa data breach: Customers warned to cancel credit cards
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ”₯
McLaren Health Care Facing 3 Lawsuits in Ransomware Hack
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ”₯
Hackers advertised 23andMe stolen data two months ago
TECHCRUNCH.COM — 10 Oct 2023
πŸ•΅οΈ
North Korea-Linked Lazarus APT Laundered Over $900 Million Through Cross-Chain Crime
SECURITYAFFAIRS.COM — 10 Oct 2023
πŸ•΅οΈ
ISC Stormcast For Tuesday, October 10th, 2023 https://isc.sans.edu/podcastdetail/8694, (Tue, Oct 10th)
ISC.SANS.EDU — 10 Oct 2023
πŸ•΅οΈ
GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion
LASTWATCHDOG.COM — 10 Oct 2023
πŸ•΅οΈ
C-suite weighs in on generative AI and security
SECURITYINTELLIGENCE.COM — 10 Oct 2023
πŸ•΅οΈ
BSides CT 2023 - BSIDES CONNECTICUT - 8 videos
INFOSEC.PUB — 10 Oct 2023
πŸ•΅οΈ
Microsoft is finally deprecating vbscript
LEARN.MICROSOFT.COM — 10 Oct 2023
πŸ•΅οΈ
Researchers Uncover Grayling APT's Ongoing Attack Campaign Across Industries
THEHACKERNEWS.COM — 10 Oct 2023
πŸ•΅οΈ
Model Extraction Attack on Neural Networks
SCHNEIER.COM — 2023-10-10
πŸ•΅οΈ
Magecart Web Skimmer Hides in 404 Error Pages
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
Researcher Conversations: Natalie Silvanovich From Google’s Project Zero
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
Training Tuesday - Discussions for certs, training and learning-at-home
INFOSEC.PUB — 10 Oct 2023
πŸ•΅οΈ
Unknown Cyberespionage Group Targeted Taiwan
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ•΅οΈ
CyberheistNews Vol 13 #41 [Risky New Data] More Than Half of Phishing Scams Now Use Obfuscation
KNOWBE4.COM — 10 Oct 2023
πŸ•΅οΈ
SecurityWeek to Host 2023 ICS Cybersecurity Conference October 23-26 in Atlanta
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
Twistlock Founders Score Whopping $51M Seed Funding for Gutsy
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
New β€˜Grayling’ APT Targeting Organizations in Taiwan, US
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
New Grayling APT Targeting Organizations In Taiwan, US
PACKETSTORMSECURITY.COM — 10 Oct 2023
πŸ•΅οΈ
Terminology Matters: Changing 'Cybersecurity' to Data Care - Ron Gula, Cyndi Gula - CSP #143
YOUTUBE.COM — 2023-10-10
πŸ•΅οΈ
SAP Releases 7 New Notes on October 2023 Patch Day
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
Researchers: North Korean Hackers Gain Speed, Flexibility
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ•΅οΈ
Curl's Impending Patch, Glibc's Looney Tunables, ShellTorch, Another Top 10 List - ASW #258
YOUTUBE.COM — 2023-10-10
πŸ•΅οΈ
23andMe, Facebook, GitHub's Secret Scanning, MGM Resorts, Grindr, & Jason Wood - SWN #332
YOUTUBE.COM — 2023-10-10
πŸ•΅οΈ
Lua-Resty-JWT Authentication Bypass
INSINUATOR.NET — 10 Oct 2023
πŸ•΅οΈ
Beyond the Front Lines: How the Israel-Hamas War Impacts the Cybersecurity Industry
SECURITYWEEK.COM — 10 Oct 2023
πŸ•΅οΈ
War in Israel: Cyber, Kinetic Implications for the World
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ•΅οΈ
Smishing Triad Threat Actor Sets Its Sights on the UAE
KNOWBE4.COM — 10 Oct 2023
πŸ•΅οΈ
Red Pandas Unleashed: How Webhooks, Bad USB, and WiFi Collide in Cyberspace
AERMORED.COM — 10 Oct 2023
πŸ•΅οΈ
TikTok Chief Summoned by EU Lawmakers For Privacy Probe
DATABREACHTODAY.CO.UK — 2023-10-10
🌐
New Report: Child Sexual Abuse Content and Online Risks to Children on the Rise
THEHACKERNEWS.COM — 10 Oct 2023
🌐
Google makes passkeys the default sign-in method for all users
TECHCRUNCH.COM — 10 Oct 2023
🌐
Predator Files Report Prompts Call For Worldwide Ban On Spyware
PACKETSTORMSECURITY.COM — 10 Oct 2023
🌐
Microsoft to kill off VBScript in Windows to block malware delivery
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“‘
Poor Cybersecurity Habits are Common Among Younger Employees
HELPNETSECURITY.COM — 10 Oct 2023
πŸ“‘
Live Webinar | Backup Data Security Strategy: Reduce Downtime & Ensure Business Continuity
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ“‘
Live Webinar | The Rise of the Cloud Conscious Adversary: Defense Recommendation Playbook
DATABREACHTODAY.CO.UK — 2023-10-10
πŸ“‘
Google Adopts Passkeys as Default Sign-in Method for All Users
THEHACKERNEWS.COM — 10 Oct 2023
πŸ“‘
Gutsy launches with huge $51M seed to bring process mining to security
TECHCRUNCH.COM — 10 Oct 2023
πŸ“‘
Google makes passkeys the default sign-in for personal accounts
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“‘
Ex-Soldier Tried To Pass Secrets To China After Seeking A Subreddit About Spy Stuff
PACKETSTORMSECURITY.COM — 10 Oct 2023
πŸ“‘
A Primer on Cyber Risk Acceptance and What it Means to Your Business
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“‘
Gutsy Launches With Huge $51M Seed to Bring Process Mining to Security
TECHCRUNCH.COM — 10 Oct 2023
πŸ“‘
New critical Citrix NetScaler flaw exposes 'sensitive' data
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“‘
Windows 10 KB5031356 update released with 25 improvements
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“‘
Microsoft warns of incorrect BitLocker encryption errors
BLEEPINGCOMPUTER.COM — 10 Oct 2023
πŸ“‘
Virus Bulletin PUA – a love letter
WELIVESECURITY.COM — 10 Oct 2023