Latest News Articles
--- TLP:WHITE ---
News
− Microsoft Expands Cloud Logging to Counter Rising Nation-State Cyber Threats
Microsoft on Wednesday announced that it's expanding cloud logging capabilities to help organizations investigate cybersecurity incidents and gain more visibility after facing criticism in the wake of a recent espionage attack campaign aimed at its email infrastructure.
https://www.microsoft.com/en-us/security/blog/2023/07/19/expanding-cloud-logging-to-give-customers-deeper-security-visibility/− Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability
Multiple DDoS botnets have been observed targeting CVE-2023-28771, a Zyxel firewall vulnerability patched in April.
https://www.fortinet.com/blog/threat-research/ddos-botnets-target-zyxel-vulnerability-cve-2023-28771− Maritime Cyberattack Database Launched by Dutch University
The NHL Stenden University of Applied Sciences in the Netherlands has launched MCAD, the Maritime Cyber Attack Database.
https://www.securityweek.com/maritime-cyberattack-database-launched-by-dutch-university/Vulnerabilities
− Vulnerability advisory for Ivanti EPMM - formerly known as MobileIron Core
Ivanti have disclosed details of a remote unauthenticated API access vulnerability in Ivanti End-point Manager Mobile (EPMM), formerly known as MobileIron Core, that impacts all supported versions of the product as well as end-of-life versions.
https://www.ncsc.gov.ie/pdfs/Ivanti_MobileIron_CVE_2023_35078.pdf− Citrix NetScaler ADC and Gateway Devices Under Attack: CISA Urges Immediate Action
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory on Thursday warning that the newly disclosed critical security flaw in Citrix NetScaler Application Delivery Controller (ADC) and Gateway devices is being abused to drop web shells on vulnerable systems.
https://www.cisa.gov/news-events/alerts/2023/07/20/cisa-releases-cybersecurity-advisory-threat-actors-exploiting-citrix-cve-2023-3519− Multiple RCE Vulnerabilities in Atlassian products
Atlassian has released its security bulletin for July 2023 to address Remote Code Execution (RCE) vul-nerabilities in Confluence Data Center and Server (CVE-2023-22505 and CVE-2023-22508) and BambooData Center (CVE-2023-22506).
https://www.ncsc.gov.ie/pdfs/Multiple_RCE_Vulnerabilities_in_Atlassian_products_230724.pdf--- TLP:WHITE ---