Vulnerability Summary for the Week of September 26, 2022

Original release date: October 3, 2022 | Last revised: October 5, 2022  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info acer -- altos_t110_f3 There…

Comments Off on Vulnerability Summary for the Week of September 26, 2022

AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization

Original release date: October 4, 2022SummaryActions to Help Protect Against Russian State-Sponsored Malicious Cyber Activity: • Enforce multifactor authentication (MFA) on all user accounts. • Implement network segmentation to separate…

Comments Off on AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization

CISA Issues Binding Operational Directive 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks

Original release date: October 3, 2022CISA has issued Binding Operational Directive (BOD) 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks, which seeks improve asset visibility and vulnerability enumeration…

Comments Off on CISA Issues Binding Operational Directive 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks

Drupal Releases Security Update

Original release date: September 30, 2022Drupal has released a security update to address a vulnerability affecting multiple versions of Drupal. An attacker could exploit this vulnerability to access sensitive information.…

Comments Off on Drupal Releases Security Update