Internet Security

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

June 25, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Someone is sending mysterious smartwatches to the US Military personnel

June 24, 2023 add comment
U.S. Army’s Criminal Investigation Division warns that US military personnel have reported receiving unsolicited smartwatches in the mail. The U.S. Army’s Criminal Investigation Division reported that service members across the military... Read more »

CISA orders govt agencies to fix recently disclosed flaws in Apple devices

June 23, 2023 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) added six new vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added six new security... Read more »

VMware fixed five memory corruption issues in vCenter Server

June 23, 2023 add comment
VMware addressed multiple memory corruption vulnerabilities in vCenter Server that can be exploited to achieve remote code execution. VMware released security updates to five memory corruption vulnerabilities (CVE-2023-20892, CVE-2023-20893,... Read more »

Fortinet fixes critical FortiNAC RCE, install updates asap

June 23, 2023 add comment
Fortinet addressed a critical remote command execution vulnerability, tracked as CVE-2023-33299, affecting FortiNAC solution. FortiNAC is a network access control (NAC) solution designed by Fortinet that is used by... Read more »

More than a million GitHub repositories potentially vulnerable to RepoJacking

June 23, 2023 add comment
Researchers reported that millions of GitHub repositories are likely vulnerable to an attack called RepoJacking. A study conducted by Aqua researchers revealed that millions of GitHub repositories are potentially... Read more »

New Mirai botnet targets tens of flaws in popular IoT devices

June 22, 2023 add comment
Since March 2023, Unit 42 researchers have observed a variant of the Mirai botnet spreading by targeting tens of flaws in D-Link, Zyxel, and Netgear devices. Since March 2023,... Read more »

Researchers released a PoC exploit for CVE-2023-20178 flaw in Cisco AnyConnect Secure

June 22, 2023 add comment
The proof-of-concept (PoC) exploit code for high-severity vulnerability (CVE-2023-20178) in Cisco AnyConnect Secure was published online. A security researcher has published a proof-of-concept (PoC) exploit code for the high-severity... Read more »

Norton parent firm Gen Digital, was victim of a MOVEit ransomware attack too

June 22, 2023 add comment
Norton parent firm, Gen Digital, was the victim of a ransomware attack that exploited the recently disclosed MOVEit zero-day vulnerability. Gen Digital Inc. (formerly Symantec Corporation and NortonLifeLock) is a multinational software company that provides cybersecurity software and... Read more »

Apple addressed actively exploited zero-day flaws in iOS, macOS, and Safari

June 22, 2023 add comment
Apple rolled out security updates to address actively exploited zero-day flaws in iOS, iPadOS, macOS, watchOS, and Safari. Apple addressed a set of vulnerabilities in iOS, iPadOS, macOS, watchOS,... Read more »
Subscribe to our Newsletter