Author: DEFENDEDGE

  • LinkedIn, Our Business Home Platform, gets Abused.

    ,

    LinkedIn, Our Business Home Platform, Gets Abused. Stephenie Stombaugh July, 13 2022 Will we ever escape scammers? The answer is no. As people, we adapt and overcome by facing new challenges and obstacles, and in turn, we learn how to handle whatever comes our way. Well, scammers are people too. With that said, scammers adapt… Read more

  • Microsoft Releases July 2022 Security Updates

    Original release date: July 12, 2022 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s July 2022 Security Update and Deployment Information and apply the necessary updates. This product is provided subject… Read more

  • SAP Releases July 2022 Security Updates

    Original release date: July 12, 2022 SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review SAP Security Patch Day – July 2022 and apply the necessary updates. This product is provided subject… Read more

  • Vulnerability Summary for the Week of July 4, 2022

    Original release date: July 11, 2022 | Last revised: July 12, 2022   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info gitlab — gitlab A critical issue has been discovered in GitLab affecting all versions starting from 14.0 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to… Read more

  • Hack Allows Drone Takeover Via ‘ExpressLRS’ Protocol

    A radio control system for drones is vulnerable to remote takeover, thanks to a weakness in the mechanism that binds transmitter and receiver. Read more

  • AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector

    Original release date: July 6, 2022 Summary The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of the Treasury (Treasury) are releasing this joint Cybersecurity Advisory (CSA) to provide information on Maui ransomware, which has been used by North Korean state-sponsored cyber actors since at least May 2021 to… Read more

  • North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector

    Original release date: July 6, 2022 CISA, the Federal Bureau of Investigation (FBI), and the Department of the Treasury (Treasury) have released a joint Cybersecurity Advisory (CSA), North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector, to provide information on Maui ransomware, which has been used by North… Read more

  • Google Releases Security Update for Chrome

    Original release date: July 5, 2022 Google has released Chrome version 103.0.5060.114 for Windows. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.  CISA encourages users and administrators to review the Chrome Release Note and apply the necessary update. This product is provided subject to this Notification and this… Read more

  • Google Patches Actively Exploited Chrome Bug

    The heap buffer overflow issue in the browser’s WebRTC engine could allow attackers to execute arbitrary code. Read more

  • Vulnerability Summary for the Week of June 27, 2022

    Original release date: July 4, 2022   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info codesys — gateway In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform… Read more