+84949482065
According to data gathered by the Shadowserver Foundation, more than 60,000 Microsoft Exchange servers remain unpatched against a known remote code execution vulnerability (CVE-2022-41082) that is exploited by ProxyNotShell. Microsoft…
WhatsApp has launched a new feature that will allow people in countries where the government has blocked service to the app to connect via proxy servers. The feature is available…
Managed cloud hosting provider Rackspace says that the December 2, 2022 attack that took down its hosted Microsoft Exchange service was conducted by the Play ransomware group. Rackspace is still…
Two recently-released cybersecurity frameworks address cybersecurity issues faced by the ground control systems and the space-based infrastructure of the space sector. New guidance from the US National Institute of Standards…
Extended support for Windows Server 2012 and Windows Server 2012 R2 will end in early October of this year. Microsoft discontinued general support for Windows Server 2012 in October 2018;…
Microsoft has reclassified a vulnerability they patched in September as critical. The vulnerability in the Simple and Protected GSSAPI Negotiation Mechanism (SPNEGO) Extended Negotiation Security Mechanism (CVE-2022-37958) was initially described…
GitHub is rolling out free secret scanning to all public repositories. Previously, the service had been available only to organizations that use GitHub Enterprise Cloud with a GitHub Advanced Security…
The user database of the FBI’s InfraGard has been offered for sale on a cybercrime forum. The database contains contact information for 80,000 public- and private-sector InfraGard members who hold…
Researchers found that common misconfigurations arising from how DNS is implemented in an environment can put air-gapped networks and high-value assets at risk. Ref https://www.darkreading.com/attacks-breaches/report-air-gapped-networks-vulnerable-dns-attacks
HR, benefits, and payroll management company Sequoia notified its customers of a data breach that occurred between September 22 and October 06, which compromised their names, contact details, SSNs, and…
