RO0T.COM

This could reflect threat actors shifting their tactics to rely on more elusive malware Source: Infosecurity WatchGuard Report: Malware Decreases but Encrypted Malware Up in Q2 2022

With provisional agreement reached on the Digital Operational Resilience Act, the clock is now ticking for banks and information and communications technology (ICT) services companies with European operations. Here’s what …

The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys. Source: …

Key activities are data leaking and selling, including officials’ phone numbers and emails Source: Infosecurity Hackers Use Telegram and Signal to Assist Protestors in Iran

Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time. Source: NIST CVE-2022-40942

The breach seems related to the hack of Fast Company’s website on Sunday afternoon Source: Infosecurity Hacker Breaches Fast Company Apple News Account, Sends Racist Messages

Illumio Endpoint extends zero trust segmentation to see risk and set policy across macOS and Windows devices. Source: DarkReading Illumio Introduces New Solution to Stop Endpoint Ransomware from Spreading Across …

ZecOps extends Jamf’s mobile security capabilities by adding advanced detections and incident response. Source: DarkReading Jamf Announces Intent to Acquire ZecOps, to Provide a Market-Leading Security Solution for Mobile Devices …

ETAP Lighting International NV ETAP Safety Manager 1.0.0.32 is vulnerable to Cross Site Scripting (XSS). Input passed to the GET parameter ‘action’ is not properly sanitized before being returned to …

Hertz v0.3.0 ws discovered to contain a path traversal vulnerability via the normalizePath function. Source: NIST CVE-2022-40082