Aggregator

A vulnerability was found in SchedMD Slurm up to 21.08.x. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls. This vulnerability is known as CVE-2022-29502. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability classified as critical was found in sysstat up to 12.7.0 on 32-bit. Affected by this vulnerability is the function allocate_structures of the file sa_common.c. The manipulation leads to buffer overflow. This vulnerability is known as CVE-2022-39377. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

ABZeroCool Has Allegedly Leaked Data of IZIPAY

Scrutiny Over Ethics of Profit-Sharing Prompts End to Cyberstarts CISO Compensation
Allegations of conflicts of interest in Cyberstarts’ Sunrise program have sparked debate in the CISO community. While the program connected CISOs with startups for advisory purposes, its profit-sharing incentives drew criticism, leading some participants to resign and the firm to halt compensation.

Also: Anticipating Donald Trump's Second Term; a Surprising Cybersecurity Merger
In the latest weekly update, ISMG editors explored the growing threat of disrupted ransomware attacks as a public health crisis, the potential global impact of a Donald Trump's second presidential term, and implications of the latest big merger in the cybersecurity market.

Researchers Find Exploitable Flaws in the OvrC Platform
Security flaws in a cloud platform for remotely configuring and monitoring Internet of Things gadgets could expose millions of devices to remote code execution hacks. Security researchers at Claroty's Team82 uncovered 10 vulnerabilities in the widely used OvrC cloud platform.

Trump Administration Picks May Test Bipartisan Support for Cybersecurity Agency
Newly empowered Republicans in U.S. president-elect Donald Trump's orbit appear slated to enact far-reaching changes to the federal cyber defense agency, with one senator pledging to act on his long-standing enmity to the Cybersecurity and Infrastructure Security Agency.

Health System's Cyberattack Affected More Than 235,000 Patients, Employees, Others
A New York state court has approved a preliminary $1.5 million settlement of a consolidated proposed class action lawsuit against One Brooklyn Health System following a November 2022 cyberattack that involved theft of sensitive health data belonging to more than 235,000 people.

via the i

Cyber Espionage / MalwareCybersecurity researchers have shed light on a new remote access trojan a

Do not call that number! This

活动时间：2024.11.16-11.30

活动时间：2024.11.16-11.30

活动时间：2024.11.16-11.30

活动时间：2024.11.16-11.30

活动时间：2024.11.16-11.30

Security Blog The latest news and insights from Google on security a