How proactive are companies when managing data?ģ3 percent of U.S. Nurse, Associate Professor in Cyber Security in the School of Computing and the Institute of Cyber Security for Society (iCSS), at the University of Kent, talks about cybersecurity higher education and how it can help close the cybersecurity skills gap. Unsecured QNAP NAS devices are getting covertly saddled with a new bitcoin miner, QNAP has warned users.Īdapting higher education to address the cybersecurity skills shortage QNAP NAS devices targeted by new bitcoin miner SonicWall has fixed a handful of vulnerabilities affecting its SMA 100 series appliances and is urging organizations to implement the patches as soon as possible. It’s time to patch your SonicWall SMA 100 series appliances again! SentinelOne researchers have unearthed a number of privilege escalation vulnerabilities in Eltima SDK, a library used by many cloud desktop and USB sharing services like Amazon Workspaces, NoMachine and Accops to allow users to connect and share local devices over network.Īttackers exploit another zero-day in ManageEngine software (CVE-2021-44515)Ī vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software. Vulnerabilities in Eltima SDK affect popular cloud desktop and USB sharing services
Prior to January, most of us had rarely heard that term, but then Solarwinds, Kaseya, and others were in the news and we heard it throughout the year. This is the year of supply chain attacks.
Offensive Security released Kali Linux 2021.4, which comes with a number of improvements: wider Samba compatibility, switching package manager mirrors, enhanced Apple M1 support, Kaboxer theming, updates to Xfce, GNOME and KDE, Raspberry Pi Zero 2 W + USBArmory MkII ARM images, as well as new tools.ĭecember 2021 Patch Tuesday forecast: How do you stack up? Kali Linux 2021.4 released: Wider Samba compatibility, The Social-Engineer Toolkit, new tools, and more!
Here’s an overview of some of last week’s most interesting news, articles and interviews:Ĭritical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)Ī critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild.
0 kommentar(er)
