Lucene search
K

174 matches found

Microsoft Secure
Microsoft Secure
added 2022/03/29 4:0 p.m.17 views

3 steps to secure your multicloud and hybrid infrastructure with Azure Arc

As businesses around the world grapple with the growth of an industrialized, organized attacker ecosystem, the need for customers to secure multicloud and hybrid infrastructure and workloads is increasingly urgent. Today, organizations face an attacker ecosystem that is highly economically...

7.7AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/12/07 5:0 p.m.17 views

New Secured-core servers are now available from the Microsoft ecosystem to help secure your infrastructure

In the current pandemic-driven remote work environments, security has become increasingly important. Earlier this year, Colonial Pipeline, one of the leading suppliers of fuel on the East Coast of the United States, was hit by a ransomware attack.1 This caused a massive disruption of the fuel...

1.7AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/12/07 5:0 p.m.17 views

New Secured-core servers are now available from the Microsoft ecosystem to help secure your infrastructure

In the current pandemic-driven remote work environments, security has become increasingly important. Earlier this year, Colonial Pipeline, one of the leading suppliers of fuel on the East Coast of the United States, was hit by a ransomware attack.1 This caused a massive disruption of the fuel...

1.7AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/11/17 5:0 p.m.27 views

Adopting a Zero Trust approach throughout the lifecycle of data

Instead of believing everything behind the corporate firewall is safe, the Zero Trust model assumes breach and verifies each request as though it originates from an uncontrolled network. Regardless of where the request originates or what resource it accesses, Zero Trust teaches us to “never trust...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2021/11/15 9:53 p.m.35 views

The Best Ransomware Response, According to the Data

Ransomware has become part of the cost of doing business, and driving down that cost can be the difference between recovery and catastrophe. A data analysis from Fox-IT, part of NCC Group, offers some best practices for how to minimize the fallout of a ransomware attack, after creating a dataset ...

7.1AI score
Exploits0References6
Malwarebytes
Malwarebytes
added 2021/10/05 9:0 a.m.39 views

Windows 11 is out. Is it any good for security?

Windows 11, the latest operating system OS from Microsoft, launches today, and organizations have begun asking themselves when and if they should upgrade from Windows 10 or older versions. The requirements and considerations of each organization will be different, and many things will inform the...

6.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/10/04 8:0 p.m.34 views

Windows 11 offers chip to cloud protection to meet the new security challenges of hybrid work

As the world has changed over the past 18-months, companies have been wrestling with ways to keep employees and data protected as they support new ways of hybrid working. We built Windows 11 to be the most secure Windows yet with built-in chip to cloud protection that ensures company assets stay...

7.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/10/04 8:0 p.m.31 views

Windows 11 offers chip to cloud protection to meet the new security challenges of hybrid work

As the world has changed over the past 18-months, companies have been wrestling with ways to keep employees and data protected as they support new ways of hybrid working. We built Windows 11 to be the most secure Windows yet with built-in chip to cloud protection that ensures company assets stay...

7.1AI score
Exploits0
Github Security Blog
Github Security Blog
added 2021/09/20 7:52 p.m.17 views

Prototype Pollution in mixme

Impact When copying properties from a source object to a target object, the target object can gain access to certain properties of the source object and modify their content. Patches The problem was patch with a more agressive discovery of secured properties to filter out...

2.2AI score
Exploits0References6Affected Software1
Veracode
Veracode
added 2021/07/23 2:50 a.m.18 views

Privilege Escalation

ghost is vulnerable to privilege escalation. Any user is able to access Admin-level API keys and gain access to secured functions...

7.2CVSS4.2AI score0.01019EPSS
Exploits1References5Affected Software1
Veeam
Veeam
added 2021/05/11 12:0 a.m.17 views

How to Configure Connections Required for Veeam Backup for Google Cloud in Highly Secured Environments

If your backup appliance is deployed in a highly secured environment with all outbound connections restricted, you must perform the following configuration steps to make Veeam Backup for Google Cloud function properly: 1. Allow internet access to the following Google Cloud APIs: Compute Engine AP...

6.7AI score
Exploits0Affected Software1
Cvelist
Cvelist
added 2021/04/27 8:20 p.m.35 views

CVE-2021-29442 Authentication bypass

Nacos is a platform designed for dynamic service discovery and configuration and service management. In Nacos before version 1.4.1, the ConfigOpsController lets the user perform management operations like querying the database or even wiping it out. While the /data/remove endpoint is properly...

8.6CVSS8.9AI score0.64697EPSS
Exploits2References3
Github Security Blog
Github Security Blog
added 2021/04/27 8:9 p.m.79 views

Authentication bypass for specific endpoint

The ConfigOpsController lets the user perform management operations like querying the database or even wiping it out. While the /data/remove endpoint is properly protected with the @Secured annotation, the /derby endpoint is not protected and can be openly accessed by unauthenticated users. For...

8.6CVSS1.5AI score0.64697EPSS
Exploits2References5Affected Software1
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/04/19 4:0 p.m.50 views

Surface expands its Secured-core portfolio with the new Surface Laptop 4 powered by AMD Ryzen™ Mobile Processors

As operating systems are becoming more secure and resistant to compromise, advanced vectors like firmware, kernel and hardware direct memory access DMA have emerged as new favored targets for threat actors. Recent trends indicate a substantial growth in the number of hardware and firmware exploit...

7.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/04/19 4:0 p.m.47 views

Surface expands its Secured-core portfolio with the new Surface Laptop 4 powered by AMD Ryzen™ Mobile Processors

As operating systems are becoming more secure and resistant to compromise, advanced vectors like firmware, kernel and hardware direct memory access DMA have emerged as new favored targets for threat actors. Recent trends indicate a substantial growth in the number of hardware and firmware exploit...

7.1AI score
Exploits0
OSV
OSV
added 2021/03/12 1:25 a.m.8 views

MGASA-2021-0132 Updated ansible packages fix security vulnerability

User data leak in snmpfacts module CVE-2021-20178. The bitbucketpipelinevariable module exposed secured values CVE-2021-20180. Multiple collections exposed secured values CVE-2021-20191. In basic.py, nolog with fallback option CVE-2021-20228. The ansible package has been updated to version 2.9.18...

7.5CVSS6.3AI score0.02043EPSS
Exploits0References4
OSV
OSV
added 2021/03/12 1:25 a.m.9 views

MGASA-2021-0131 Updated ansible packages fix security vulnerability

User data leak in snmpfacts module CVE-2021-20178. Multiple collections exposed secured values CVE-2021-20191. In basic.py, nolog with fallback option CVE-2021-20228. The ansible package has been patched to fix these issues...

7.5CVSS6.3AI score0.02043EPSS
Exploits0References3
Mageia
Mageia
added 2021/03/12 1:25 a.m.42 views

Updated ansible packages fix security vulnerability

User data leak in snmpfacts module CVE-2021-20178. Multiple collections exposed secured values CVE-2021-20191. In basic.py, nolog with fallback option CVE-2021-20228. The ansible package has been patched to fix these issues...

7.5CVSS2.4AI score0.02043EPSS
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2021/03/02 2:0 p.m.47 views

Microsoft brings advanced hardware security to Server and Edge with Secured-core

A cursory look at recent headlines reveals two clear trends. First, organizations around the world are embracing digital transformation using technologies across cloud and edge computing to better serve their customers and thrive in fast-paced environments. Second, attackers are constantly...

7.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/03/02 2:0 p.m.39 views

Microsoft brings advanced hardware security to Server and Edge with Secured-core

A cursory look at recent headlines reveals two clear trends. First, organizations around the world are embracing digital transformation using technologies across cloud and edge computing to better serve their customers and thrive in fast-paced environments. Second, attackers are constantly...

7.1AI score
Exploits0
Rows per page
Query Builder