Monthly Archives: March 2023

Current Activity

Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments

Today, CISA released the Untitled Goose Tool to help network defenders detect potentially malicious activity in Microsoft Azure, Azure Active Directory (AAD), and Microsoft 365 (M365) environments. The Untitled Goose…

Comments Off on Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments
March 24, 2023
Current Activity

JCDC Cultivates Pre-Ransomware Notification Capability

In today’s blog post, Associate Director of the Joint Cyber Defense Collaborative (JCDC) Clayton Romans highlighted recent successes of pre-ransomware notification and its impact in reducing harm from ransomware intrusions. With…

Comments Off on JCDC Cultivates Pre-Ransomware Notification Capability
March 24, 2023
Bulletins

Vulnerability Summary for the Week of June 6, 2016

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info ansibleworks -- ansible The create_script function in the lxc_container module in Ansible before 1.9.6-1 and 2.x before…

Comments Off on Vulnerability Summary for the Week of June 6, 2016
March 22, 2023
Bulletins

Vulnerability Summary for the Week of January 31, 2011

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info automatedsolutions -- modbus/tcp_master_opc_server Heap-based buffer overflow in Automated Solutions Modbus/TCP Master OPC Server before 3.0.2 allows remote…

Comments Off on Vulnerability Summary for the Week of January 31, 2011
March 21, 2023
Bulletins

Vulnerability Summary for the Week of October 17, 2011

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info apple -- iphone_os The Settings component in Apple iOS before 5, when a configuration profile is used…

Comments Off on Vulnerability Summary for the Week of October 17, 2011
March 21, 2023
Bulletins

Summary of Security Items from February 2 through February 8, 2006

The US-CERT Cyber Security Bulletin provides a summary of new and updated vulnerabilities, exploits, trends, and malicious code that have recently been openly reported. Information in the Cyber Security Bulletin…

Comments Off on Summary of Security Items from February 2 through February 8, 2006
March 21, 2023
Bulletins

Vulnerability Summary for the Week of June 25, 2012

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info alexis_wilke -- protected_node The Protected Node module 6.x-1.x before 6.x-1.6 for Drupal does not properly "protect node…

Comments Off on Vulnerability Summary for the Week of June 25, 2012
March 21, 2023
Bulletins

Vulnerability Summary for the Week of September 18, 2006

"> High Vulnerabilities PrimaryVendor -- Product Description Discovered Published CVSS Score Source & Patch Info AEwebworks -- aeDating Multiple PHP remote file inclusion vulnerabilities in AEDating 4.1, and possibly earlier…

Comments Off on Vulnerability Summary for the Week of September 18, 2006
March 21, 2023