InfoSec News Feeds

\ Latest Updates

Aggregated InfoSec News

Packetstorm

  • Ubuntu Security Notice USN-5991-1
    on 31 March 2023 at 4:16 PM

    Ubuntu Security Notice 5991-1 - It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service. It was discovered that a use-after-free vulnerability existed in the SGI GRU […]

  • Ubuntu Security Notice USN-5990-1
    on 31 March 2023 at 4:16 PM

    Ubuntu Security Notice 5990-1 - It was discovered that musl did not handle certain i386 math functions properly. An attacker could use this vulnerability to cause a denial of service or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 […]

  • Ubuntu Security Notice USN-5989-1
    on 31 March 2023 at 4:08 PM

    Ubuntu Security Notice 5989-1 - Tao Lyu discovered that GlusterFS did not properly handle certain event notifications. An attacker could possibly use this issue to cause a denial of service.

THN

PortSwigger

Security Affaris

  • Hackers are actively exploiting a flaw in the...
    by Pierluigi Paganini on 31 March 2023 at 9:16 PM

    Threat actors are actively exploiting a high-severity flaw in the Elementor Pro WordPress plugin used by more than eleven million websites WordPress security firm PatchStack warns of a high-severity vulnerability in the Elementor Pro WordPress plugin that is currently being exploited by threat […]

  • Cyber Police of Ukraine arrested members of a...
    by Pierluigi Paganini on 31 March 2023 at 2:37 PM

    The Cyber Police of Ukraine, with law enforcement officials from Czechia, has arrested several members of a gang responsible for $4.33 million scam. The Cyber Police of Ukraine, with the support of law enforcement officials from the Czech Republic, has arrested several members of a cybercriminal […]

  • Russian APT group Winter Vivern targets email...
    by Pierluigi Paganini on 31 March 2023 at 10:52 AM

    Russian hacking group Winter Vivern has been actively exploiting Zimbra flaws to steal the emails of NATO and diplomats. A Russian hacking group, tracked Winter Vivern (aka TA473), has been actively exploiting vulnerabilities (CVE-2022-27926) in unpatched Zimbra instances to gain access to the […]

HackerOne

WeLiveSecurity

  • Avoiding data backup failures – Week in...
    by Editor on 31 March 2023 at 2:00 PM

    Today is World Backup Day, but maybe we also need a "did you test your backups" day? The post Avoiding data backup failures – Week in security with Tony Anscombe appeared first on WeLiveSecurity

  • World Backup Day: Avoiding a data disaster is a...
    by Márk Szabó on 31 March 2023 at 10:30 AM

    By failing to prepare you are preparing to fail. Make sure you're able to bounce back if, or when, a data disaster strikes. The post World Backup Day: Avoiding a data disaster is a forever topic  appeared first on WeLiveSecurity

  • ESET Research Podcast: A year of fighting...
    by ESET Research on 30 March 2023 at 10:30 AM

    ESET experts share their insights on the cyber-elements of the first year of the war in Ukraine and how a growing number of destructive malware variants tried to rip through critical Ukrainian systems The post ESET Research Podcast: A year of fighting rockets, soldiers, and wipers in Ukraine […]

TheRegister

  • Do you use comms software from 3CX? What to do...
    by Laura Dobberstein on 30 March 2023 at 5:25 PM

    Miscreants hit downstream customers with infostealers Two security firms have found what they believe to be a supply chain attack on communications software maker 3CX – and the vendor's boss is advising users to switch to the progressive web app until the 3CX desktop client is updated.…

  • The most important email conversation you will...
    by Elizabeth Coles on 30 March 2023 at 10:14 AM

    Securing your business against BEC Webinar  Business email compromise (BEC) is possibly the worst of cybercrimes because it abuses trust. It feeds on relationships carefully nurtured over decades and erodes a confidence which is foundational to cooperation, and progress.…

  • FTX cryptovillain Sam Bankman-Fried charged with...
    by Laura Dobberstein on 29 March 2023 at 11:24 AM

    Court gives him new rules: Use one laptop, while living with the 'rents. US authorities have charged FTX co-founder Sam Bankman-Fried (aka SBF) with attempting to bribe Chinese officials with $40 million worth of cryptocurrency in exchange for unfreezing trading accounts.…

Security Week

Exploit-DB Updates