π¨ Security Alert! Critical vulnerability found in ruby-saml package (CVE-2015-20108). If you're using versions < 1.0.0, upgrade now! Details: https://github.com/advisories/GHSA-r364-2pj4-pf7f #CyberSecurity #RubySAMLPackage #CVE201520108
Head of Cyber Intelligence Services at BRANDEFENSE Inc.
π¨ Security Alert! Critical vulnerability found in ruby-saml package (CVE-2015-20108). If you're using versions < 1.0.0, upgrade now! Details: https://github.com/advisories/GHSA-r364-2pj4-pf7f #CyberSecurity #RubySAMLPackage #CVE201520108
π¨ ALERT: Critical SSRF Vulnerability (CVE-2021-33690) discovered in #SAPNetWeaver. High risk, CVSS score 9.9. Users of versions 7.11 to 7.50, apply SAP's approved patches immediately. Stay vigilant. More info: https://redrays.io/cve-2021-33690-server-side-request-forgery-vulnerability/ #CyberSecurity #SSRF #Vulnerability
π#SecurityAlert: New critical vulnerability in #ImageMagick allows remote command injection (CVE-2023-34152). If you're running ImageMagick on your servers, apply the patch now! π‘οΈ Stay safe, stay updated. #CyberSecurity #CVE202334152
https://securityonline.info/cve-2023-34152-shell-command-injection-bug-affecting-imagemagick/
π¨WordPress is force installing a critical security patch for the Jetpack plug-in on 5M+ sites. Already 4.13M+ sites updated. Be sure to check your version! Stay safe, keep updated. #WordPress #CyberSecurity #Jetpack
https://www.bleepingcomputer.com/news/security/wordpress-force-installs-critical-jetpack-patch-on-5-million-sites/
π #WordPress users, stay secure! The May 2023 vulnerability & patch roundup is out. Key vulnerabilities in plugins like Elementor, Advanced Custom Fields Pro & more have been patched. Stay informed, update regularly. Full details π https://blog.sucuri.net/2023/05/wordpress-vulnerability-patch-roundup-may-2023.html #CyberSecurity #InfoSec
β οΈ #SecurityAlert: Critical vulnerabilities discovered in #Moxa's MXsecurity Series. Could allow unauthorized users to bypass authentication or execute commands. Upgrade to software v1.0.1 or higher ASAP!
https://www.cisa.gov/news-events/ics-advisories/icsa-23-145-01
#CyberSecurity #InfoSec #SecurityUpdate
β οΈ #SecurityAlert: Critical vulnerabilities found in Zyxel firewall and VPN products. Both are buffer overflow issues allowing potential remote code execution or DoS attacks. Apply the latest patches now!
https://www.bleepingcomputer.com/news/security/zyxel-warns-of-critical-vulnerabilities-in-firewall-and-vpn-devices/
#CyberSecurity #InfoSec #ZyxelSecurityUpdate
#BarracudaESG Alert! A zero-day vulnerability (CVE-2023-2868) was exploited and has been patched. If impacted, check your ESG interface for instructions and review your networks for compromises. Stay safe! More details: https://securityaffairs.com/146620/hacking/barracuda-email-security-gateway-bug.html #Cybersecurity #ZeroDay
π #SecurityUpdate Alert! @dell has released DSA-2023-187 update addressing vulnerabilities in Avamar, NVE, and PowerProtect DP Series Appliances. Ensure your systems are protected and check out the update here: https://www.dell.com/support/kbdoc/tr-tr/000213738/dsa-2023-187 #CyberSecurity #DellSecure
π¨#GitLab users! Critical security flaw (CVE-2023-2825) identified in version 16.0.0 could allow unauthenticated users access to sensitive data. Upgrade immediately to version 16.0.1, which patches this vulnerability. Details π https://about.gitlab.com/releases/2023/05/23/critical-security-release-gitlab-16-0-1-released/ #Cybersecurity #CVE20232825
π #CybersecurityAlert: Critical vulnerabilities identified in Mitsubishi Electric MELSEC Series CPU modules & Hitachi Energy's RTU500 Series Product. Users advised to update systems ASAP. Details:
Mitsubishi: www.cisa.gov/news-events/ics-advisories/icsa-23-143-03
Hitachi: www.cisa.gov/news-events/ics-advisories/icsa-23-143-02
Stay safe, stay updated! π»π #Cybersecurity #ICS #CISA
Join my professional network and connect with me on LinkedIn
https://www.linkedin.com/comm/mynetwork/discovery-see-all?usecase=PEOPLE_FOLLOWS&followMember=mstfknn
β οΈ Urgent! Power9 & Power10 users, a critical security vulnerability (CVE 2023-30438) has been found in PowerVM hypervisor. Risk of data leakage & arbitrary code execution! Apply IBM's recommended patches immediately. Full details here: https://www.itjungle.com/2023/05/22/critical-security-vulnerability-in-powervm-hypervisor/ #IBM #PowerVM #Cybersecurity
π¨ #SecurityAlert! Multiple vulnerabilities found in Cisco Small Business Series Switches. Could lead to DoS or allow attackers to execute arbitrary code. Updates available, apply ASAP. Stay safe! #CyberSecurity #Cisco
Details here π https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sg-web-multi-S9g4Nkgv
π¨#Apple users, attention! Three zero-day vulnerabilities have been patched that could expose your devices to serious threats. Update your devices ASAP to stay secure. π More details: https://www.darkreading.com/application-security/apple-patches-3-zero-days-possibly-already-exploited #Cybersecurity #ZeroDay #PatchUpdate
#Ransomware is on our watch!
We covered 591 incidents that happened over Q1 2023. Improve your defenses with our helpful insights.
Jump in now and discover Cyber Insights.
See the full report here: eu1.hubs.ly/H03NXgb0
#StaySafe #CyberSecurity
China's Mustang Panda Hackers Exploit TP-Link Routers for Persistent Attacks https://thehackernews.com/2023/05/chinas-mustang-panda-hackers-exploit-tp.html
π¨π Critical vulnerabilities found in #Teltonika products! Cybersecurity firms Otorio and Claroty have uncovered vulnerabilities that could expose thousands of organizations to remote attacks. Stay vigilant and update your systems! #CyberSecurity #ICS #OT
https://eu1.hubs.ly/H03NGcM0
π¨ New RaaS "MichaelKors" is targeting Linux & VMware ESXi systems! With ESXi's design not supporting third-party agents or AV software, it's crucial to bolster security with 2FA, regular backups, and security updates. Stay safe, stay vigilant. More info: https://thehackernews.com/2023/05/new-michaelkors-ransomware-as-service.html
π¨#SecurityUpdate: Critical flaw (CVE-2023-32243) found in "Essential Addons for Elementor", a popular WordPress plugin used by 1M+ sites. If exploited, attackers could hijack accounts. Update to version 5.7.2 now! http://bit.ly/3u9Rg4X #CyberSecurity #WordPress #UpdateNow