News – Page 5 – MoRENet CSIRT

Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Juniper has released a security advisory to address vulnerabilities in Junos OS on SRX Series and EX Series. A remote cyber threat actor could exploit these vulnerabilities to cause a denial-of service condition. CISA encourages users and administrators to review Juniper’s Support Portal and apply the necessary updates. Source: https://www.cisa.gov/news-events/alerts/2023/08/18/juniper-releases-security-advisory-multiple-vulnerabilities-junos-os

Cisco Releases Security Advisories for Multiple Products

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. A cyber threat actor can exploit some of these vulnerabilities to take control of an affected system or cause a denial-of service condition. CISA encourages users and administrators to review the following advisories and apply the necessary updates. ThousandEyes…

Atlassian Releases Security Update for Confluence Server and Data Center

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Atlassian has released its security bulletin for August 2023 to address a vulnerability in Confluence Server and Data Center, CVE-2023-28709.A remote attacker can exploit this vulnerability to cause a denial-of-service condition. CISA encourages users and administrators to review Atlassian’s August 2003 Security Bulletin and apply the necessary update. Source: https://www.cisa.gov/news-events/alerts/2023/08/17/atlassian-releases-security-update-confluence-server-and-data-center

CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Today, CISA released the Remote Monitoring and Management (RMM) Cyber Defense Plan, the first proactive Plan developed by industry and government partners through the Joint Cyber Defense Collaborative (JCDC). This plan addresses systemic risks facing the exploitation of RMM software. Cyber threat actors can gain footholds via RMM software into…

CISA Releases Malware Analysis Reports on Barracuda Backdoors

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

CISA has published an additional malware analysis report associated with malicious Barracuda activity. The report provides analysis on the following malware sample: WHIRLPOOL – WHIRLPOOL is a backdoor that establishes a Transport Layer Security (TLS) reverse shell to the Command-and-Control (C2) server. For more information, including indicators of compromise and…

Adobe Releases Security Updates for Multiple Products

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Adobe has released security updates to address multiple vulnerabilities in Adobe software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Adobe Acrobat and Reader: APSB23-30 Adobe…

Microsoft Releases August 2023 Security Updates

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s August 2023 Security Update Guide and apply the necessary updates. Source: https://www.cisa.gov/news-events/alerts/2023/08/08/microsoft-releases-august-2023-security-updates

Fortinet Releases Security Update for FortiOS

Post author:Administrator
Post published:22 de August, 2023
Post category:Tecnologia

Fortinet has released a security update to address a vulnerability (CVE-2023-29182) affecting FortiOS. A remote attacker can exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the Fortinet security release [FG-IR-23-149] and apply the necessary updates. Source: https://www.cisa.gov/news-events/alerts/2023/08/08/fortinet-releases-security-update-fortios

Juniper Networks Releases Security Advisory for Junos OS and Junos OS Evolved

Post author:Administrator
Post published:27 de June, 2023
Post category:Tecnologia

Juniper Networks has released a security advisory that addresses a vulnerability in Junos OS and Junos OS Evolved. A remote attacker could exploit this vulnerability to cause a denial-of-service condition. CISA encourages users and administrators to review the Juniper Security Advisory for CVE-2023-0026 and apply the necessary updates. Source: https://www.cisa.gov/news-events/alerts/2023/06/22/juniper-networks-releases-security-advisory-junos-os-and-junos-os-evolved

ISC Releases Security Advisories for Multiple Versions of BIND 9

Post author:Administrator
Post published:27 de June, 2023
Post category:Tecnologia

The Internet Systems Consortium (ISC) has released security advisories that address vulnerabilities affecting multiple versions of the ISC’s Berkeley Internet Name Domain (BIND) 9. A remote attacker could exploit these vulnerabilities to potentially cause denial-of-service conditions. CISA encourages users and administrators to review the following ISC advisories CVE-2023-2828, CVE-2023-2829, and…