September 2024 – CYNET-CSIRT

Vulnerability Summary for the Week of September 23, 2024

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info Patch Info Dover Fueling Solutions (DFS)--ProGauge MAGLINK LX CONSOLE A specially crafted POST request to the ProGauge MAGLINK LX…

Comments Off

September 30, 2024

CYNET

CYBERUNITY Demonstration: Advancing Security through Federated Cyber Ranges

Mark your calendars! We are excited to invite you to the CYBERUNITY Demonstration: Advancing Security through Federated Cyber Ranges on October 30th, 2024, organized by the EU-funded CYBERUNITY project. As…

0 Comments

September 27, 2024

CYNET

Save the Date: “Fortifying Defences” – Cybersecurity Initiatives & Blue Teaming Strategies

Mark your calendars! We are thrilled to invite you to an exciting event as part of Cybersecurity Awareness Month: Join us for an engaging session where we’ll unveil key initiatives…

0 Comments

September 27, 2024

Current Activity

ASD’s ACSC, CISA, and US and International Partners Release Guidance on Detecting and Mitigating Active Directory Compromises

Today, the Australian Signals Directorate Australian Cyber Security Centre (ASD ACSC), the Cybersecurity and Infrastructure Security Agency (CISA), and other U.S. and international partners released the joint guide Detecting and…

Comments Off

September 27, 2024

Current Activity

CISA Warns of Hurricane-Related Scams

As Hurricane Helene approaches, CISA urges users to remain on alert for potential malicious cyber activity. Fraudulent emails and social media messages—often containing malicious links or attachments—are common after major…

Comments Off

September 26, 2024

Bulletins

Vulnerability Summary for the Week of September 16, 2024

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info CIRCUTOR--CIRCUTOR Q-SMT CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service…

Comments Off

September 23, 2024

Current Activity

Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-45229

Versa Networks has released an advisory for a vulnerability (CVE-2024-45229) affecting Versa Director. A cyber threat actor could exploit this vulnerability to exercise unauthorized REST APIs. CISA urges organizations to…

Comments Off

September 21, 2024

Current Activity

VMware Releases Security Advisory for VMware Cloud Foundation and vCenter Server

VMware released a security advisory addressing vulnerabilities in the VMware Cloud Foundation and the vCenter Server. A cyber threat actor could exploit one of these vulnerabilities to take control of…

Comments Off

September 20, 2024

Current Activity

CISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting Vulnerabilities

Today, CISA and FBI released a Secure by Design Alert, Eliminating Cross-Site Scripting Vulnerabilities, as a part of our ongoing effort to reduce the prevalence of vulnerability classes at scale.…

Comments Off

September 18, 2024

Current Activity

New CISA Plan Aligns Federal Agencies in Cyber Defense

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the Federal Civilian Executive Branch (FCEB) Operational Cybersecurity Alignment (FOCAL) Plan. Developed in collaboration with FCEB agencies, this plan provides standard,…

Comments Off

September 17, 2024