Pacosite's Blog

Comunicaciones, Linux, Tecnología e Internet

What CISOs Should Tell the Board About Log4j

Posted on February 11, 2022 by Frank Cisco

It’s time for a reset with the board of directors, since very few have a dedicated, board-level cybersecurity committee, which means cybersecurity isn’t viewed as a critical executive function.

from Dark Reading https://ift.tt/CH25AJY
via IFTTT

Apple zero-day drama for Macs, iPhones and iPads – patch now!

Posted on February 11, 2022 by Frank Cisco

Sudden update! Zero-day browser hole! Drive-by malware danger! Patch Apple laptops and phones now…

from Naked Security https://ift.tt/jkKrZw0
via IFTTT

[webapps] Kyocera Command Center RX ECOSYS M2035dn – Directory Traversal File Disclosure (Unauthenticated)

Posted on February 11, 2022 by Frank Cisco

Kyocera Command Center RX ECOSYS M2035dn – Directory Traversal File Disclosure (Unauthenticated)

from Exploit-DB.com RSS Feed https://ift.tt/c17ZBqp
via IFTTT

[webapps] Subrion CMS 4.2.1 – Cross Site Request Forgery (CSRF) (Add Amin)

Posted on February 11, 2022 by Frank Cisco

Subrion CMS 4.2.1 – Cross Site Request Forgery (CSRF) (Add Amin)

from Exploit-DB.com RSS Feed https://ift.tt/yCBueZO
via IFTTT

[webapps] Accounting Journal Management System 1.0 – ‘id’ SQLi (Authenticated)

Posted on February 11, 2022 by Frank Cisco

Accounting Journal Management System 1.0 – ‘id’ SQLi (Authenticated)

from Exploit-DB.com RSS Feed https://ift.tt/dkLujUZ
via IFTTT

Hidden in plain sight: How the dark web is spilling onto social media

Posted on February 10, 2022 by Frank Cisco

A trip into the dark corners of Telegram, which has become a magnet for criminals peddling everything from illegal drugs to fake money and COVID-19 vaccine passes

The post Hidden in plain sight: How the dark web is spilling onto social media appeared first on WeLiveSecurity

from WeLiveSecurity https://ift.tt/bQ1XgMw
via IFTTT

Retailers’ Offboarding Procedures Leave Potential Risks

Posted on February 10, 2022 by Frank Cisco

IT teams need to consider unforeseen threats to avoid violating privacy regulations and supplier contracts.

from Dark Reading https://ift.tt/GYxFC29
via IFTTT

Credential-Stuffing Attacks on Remote Windows Systems Took Off in 2021

Posted on February 10, 2022 by Frank Cisco

Password-guessing became last year’s weapon of choice, as attackers attempted to brute-force vulnerable Remote Desktop Protocol (RDP) servers, SQL databases, and SMB file shares.

from Dark Reading https://ift.tt/IxJst6E
via IFTTT

Apple Releases Security Update for Webkit Flaw

Posted on February 10, 2022 by Frank Cisco

A Webkit use-after-free vulnerability in iOS, iPadOS, Monterey, and Safari may already have been exploited, Apple said in a security advisory issued today.

from Dark Reading https://ift.tt/Bdzk3JU
via IFTTT

Defense Contractors Need to Check Their Six

Posted on February 10, 2022 by Frank Cisco

Companies overall met government standards, but poor credential management left vulnerabilities.

from Dark Reading https://ift.tt/B4aTDeb
via IFTTT

S	M	T	W	T	F	S
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31