Ελληνικά
Published: 2021-06-15 Risk Medium Patch available YES Number of vulnerabilities 1 CVE ID CVE-2021-31521 CWE ID CWE-79 Exploitation vector Network Public exploit N/A Vulnerable software InterScan Web Security Virtual ApplianceServer applications / Server solutions for antivurus protection Vendor Security Advisory This security advisory describes one medium risk vulnerability. 1) Cross-site scripting Risk: Medium CVSSv3.1: 5.3 […]
Author Archives: CSIRT
SolarMarker makers are using SEO poisoning, stuffing thousands of PDFs with tens of thousands of pages full of SEO keywords & links to redirect to the malware. The pushers behind the SolarMarker backdoor malware are flooding the web with PDFs stuffed with keywords and links that redirect to the password-stealing, credential-snarfing malware. Microsoft Security Intelligence […]
Microsoft 365 Defender researchers recently uncovered and disrupted a large-scale business email compromise (BEC) infrastructure hosted in multiple web services. Attackers used this cloud-based infrastructure to compromise mailboxes via phishing and add forwarding rules, enabling these attackers to get access to emails about financial transactions. In this blog, we’ll share our technical analysis and journey […]
Cybersecurity in general, and ransomware in specific, climbed high onto the ladder of major policy issues at both the weekend meeting of G-7 nations this weekend, and the NATO Summit that concluded on June 14. The increasing importance of cybersecurity on the national stage tracks with U.S. policy in recent months, including Federal government responses […]
Citrix this week announced that it has patched a local privilege escalation vulnerability in the Citrix Workspace app for Windows. Tracked as CVE-2021-22907, the vulnerability could be exploited by local attackers to escalate their privileges to SYSTEM level. All supported versions of Citrix Workspace app for Windows are affected by the security hole. The issue, […]