CSIRT - National Cybersecurity Emergency Responce Team
Eli Kuyamova Компанията AnyDesk потвърди за успешна кибератака, при която нападателите са успели да получат достъп до сървърите им. Изходният код и частните ключове за подписване на приложението са били откраднати по време на атаката. След компрометиране на сървърите са предприети необходимите мерки и е активиран план за реакция при инциденти съвместно с компанията CrowdStrike. AnyDesk е … Read more
VMware released a security advisory to address multiple vulnerabilities in Aria Operations for Networks. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.
Европейската комисия, Агенцията на Европейския съюз за киберсигурност (ENISA), CERT-EU, Европол и мрежата на националните екипи на ЕС за реагиране при инциденти с компютърната сигурност (CSIRTs network) следят отблизо активното използване на уязвимостите в Ivanti Connect Secure и Ivanti Policy Secure Gateway продукти, решенията за VPN, известни като Pulse Connect Secure. След първоначалното разкриване на … Read more
Juniper Networks released a security bulletin to address multiple vulnerabilities affecting Juniper Secure Analytics optional applications. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.
Juniper Networks released a security bulletin to address multiple vulnerabilities for J-Web in Junos OS SRX Series and EX Series. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.
Cisco released a security advisory to address a vulnerability (CVE-2024-20253) affecting multiple Unified Communications Products. A cyber threat actor could exploit this vulnerability to take control of an affected system.
Mozilla has released security updates to address vulnerabilities in Thunderbird and Firefox. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.
Apple has released security updates for iOS and iPadOS, macOS, Safari, watchOS, and tvOS. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Read more
Citrix released security updates to address vulnerabilities (CVE-2023-6548 and CVE-2023-6549) in NetScaler ADC and NetScaler Gateway. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.
Oracle released its Critical Patch Update Advisory for January 2024 to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Read more