Latest News Articles
--- TLP:WHITE ---
News
− 2022 ICS Attacks: Fewer-Than-Expected on US Energy Sector, But Ransomware Surged
Dragos ICS/OT Cybersecurity Year in Review 2022 report covers state-sponsored attacks, ransomware, and vulnerabilities.
https://hub.dragos.com/hubfs/312-Year-in-Review/2022/Dragos_Year-In-Review-Report-2022.pdf− ESXiArgs Ransomware Hits Over 500 New Targets in European Countries
More than 500 hosts have been newly compromised en masse by the ESXiArgs ransomware strain, most of which are located in France, Germany, the Netherlands, the U.K., and Ukraine. The findings come from attack surface management firm Censys, which discovered "two hosts with strikingly similar ransom notes dating back to mid-October 2022
https://censys.io/the-evolution-of-esxiargs-ransomware/− EU lawmakers advise against signing US data pact
Lawmakers in the European Parliament have urged the European Commission not to issue the "adequacy decision" needed for the EU-US Data Privacy Framework (DPF) to officially become the pipeline for data to freely flow from the EU to the States.
https://www.europarl.europa.eu/doceo/document/LIBE-RD-740749_EN.pdfVulnerabilities
− Microsoft February 2023 Patch Tuesday fixes 3 exploited zero-days, 77 flaws
Today is Microsoft's February 2023 Patch Tuesday, and security updates fix three actively exploited zero-day vulnerabilities and a total of 77 flaws.
https://www.bleepingcomputer.com/news/microsoft/microsoft-february-2023-patch-tuesday-fixes-3-exploited-zero-days-77-flaws/− ICS Patch Tuesday: 100 Vulnerabilities Addressed by Siemens, Schneider Electric
Siemens and Schneider Electric address nearly 100 vulnerabilities across several of their products with their February 2023 Patch Tuesday advisories.
https://www.securityweek.com/ics-patch-tuesday-100-vulnerabilities-addressed-by-siemens-schneider-electric/− Critical RCE Vulnerability Discovered in ClamAV Open-Source Antivirus Software
Cisco has rolled out security updates to address a critical flaw reported in the ClamAV open source antivirus engine that could lead to remote code execution on susceptible devices. Tracked as CVE-2023-20032 (CVSS score: 9.8), the issue relates to a case of remote code execution residing in the HFS+ file parser component.
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-q8DThCy− Fortinet fixes critical RCE flaws in FortiNAC and FortiWeb
Cybersecurity solutions company Fortinet has released security updates for its FortiNAC and FortiWeb products, addressing two critical-severity vulnerabilities that may allow unauthenticated attackers to perform arbitrary code or command execution.
https://www.bleepingcomputer.com/news/security/fortinet-fixes-critical-rce-flaws-in-fortinac-and-fortiweb/Community News
− APNIC calls in lawyers to handle election code of conduct breach allegations
Threats to voters also reported as vote for regional internet registry heats up Regional internet registry the Asia Pacific Network Information Centre (APNIC) has appointed external lawyers to consider allegations of multiple breaches of its election nominee code of conduct, including threats related to the election.
https://go.theregister.com/feed/www.theregister.com/2023/02/21/apnic_engages_lawyers_election_investigation/--- TLP:WHITE ---