eSecurity Planet

OCTOBER 12, 2023

supports weak cryptography, which is a security risk as there are tools available to decrypt packets with weak cryptography. also doesn’t help in rendering modern connections securely. For example, if a Windows 8 machine communicates with a Windows 2012 server, the SMB 3.0 is enabled, the SMB 1.0 protocol will be used.

Risk 142

Risk Authentication Encryption Cybersecurity 142

eSecurity Planet

OCTOBER 11, 2023

Ivanti vice president of security products Chris Goettl noted that while the CVSS score is a relatively low 6.5, “proof-of-concept code has been disclosed and there are exploits detected in the wild. This CVE should be treated as a higher severity than Important due to the risk of exploit.”

DDOS 109

DDOS Engineering Authentication Social Engineering 109

eSecurity Planet

AUGUST 4, 2023

Cloud Workload Protection Platforms (CWPP): Best used for securing specific workloads and applications, with a particular focus on runtime safety and vulnerability management. Cloud Infrastructure Entitlement Management (CIEM): Best used to effectively manage cloud resource entitlements, reduce access risks, and maintain compliance.

Architecture 98

Architecture Risk Data breaches Threat Detection 98

eSecurity Planet

APRIL 1, 2024

The fix: Apply the emergency fixes issued by Microsoft for: Windows Server 2022 Windows Server 2019 Windows Server 2016 Windows Server 2012 R2 Attackers Actively Exploit Fortinet Enterprise Management Server SQLi Flaw Type of vulnerability: SQL injection (SQLi) flaw.

Authentication 109

Authentication Artificial Intelligence Software Risk 109

eSecurity Planet

JUNE 10, 2024

The fix: To prevent the risk, federal agencies and companies that use Oracle WebLogic Server should apply the most recent fixes before June 24, 2024. The fix: To reduce the risk of exploitation, immediately update Apache RocketMQ to the newest version. To reduce the risk of exploitation, update to ThinkPHP version 8.0.

Malware 80

Malware Authentication Software Telecommunications 80

Digital Shadows

OCTOBER 29, 2024

For initial access, RansomHub affiliates often compromise internet-facing systems and user endpoints via phishing emails, password spraying, and exploiting high-risk remote code execution (RCE) and privilege escalation vulnerabilities. Regularly reassess your risk posture and adjust patching priorities accordingly.

Ransomware 88

Ransomware Encryption Technology Cybercrime 88

Digital Shadows

OCTOBER 29, 2024

For initial access, RansomHub affiliates often compromise internet-facing systems and user endpoints via phishing emails, password spraying, and exploiting high-risk remote code execution (RCE) and privilege escalation vulnerabilities. Regularly reassess your risk posture and adjust patching priorities accordingly.

Ransomware 52

Ransomware Encryption Technology Cybercrime 52