Il Blog di Michele Pinassi
الذهاب إلى القناة على Telegram
Parliamo di tecnologia, politica e cybersecurity. Post automatici e rassegna personale.
إظهار المزيد304
المشتركون
-124 ساعات
-27 أيام
-130 أيام
أرشيف المشاركات
🏴☠️ Blackbasta has just published a new victim : jlgmarine.com
John Lilley & Gillie Ltd has more than 200 years of expertise in the manufacture of the magnetic compass and nautical instrument making has served the marine industry worldwide.SITE: www.jlgmarine.com Address 8 Neptune Court Orion Business Park NE29 7UW North Shields EnglandFULL DATA SIZE: 97gb 1. Finance 2. Confidentiality [...]
by Ransomware live - https://www.ransomware.live/#/group/blackbasta
🏴☠️ Alphv has just published a new victim : Eckell Sparks Law Firm
With offices in Media, PA and West Chester, PA, our staff of lawyers are available to meet you where you live or work. Whether it’s a personal injury case, you’ve been in an auto accident, you’re considering a divorce or separation, you’ve had a medical malpractice issue, starting a business [...]
by Ransomware live - https://www.ransomware.live/#/group/alphv
🏴☠️ Ransomexx has just published a new victim : Admilla ELAP
Elap (formerly Admilia) offers its expertise and support throughout the implementation of your budget and accounting solution. Huge clients, financial documents, contracts, personal data and a lot of confidential things belongs to their customers. If you wanna be one someday your data will be here.
by Ransomware live - https://www.ransomware.live/#/group/ransomexx
🏴☠️ Blacksuit has just published a new victim : Select Education Group
5601 Stoddard Rd, Modesto, California, 95356, United States
by Ransomware live - https://www.ransomware.live/#/group/blacksuit
🏴☠️ Cactus has just published a new victim : Verhelst
From shell construction to recycling of construction waste. From asphalt production to sand mining. From asbestos removal to soil remediation. Verhelst Group is a total partner for professional construction projects. A construction group with a unique approach and extensive construction expertise.
by Ransomware live - https://www.ransomware.live/#/group/cactus
🏴☠️ Incransom has just published a new victim : B+P Gerüstbau GmbH
For more than 40 years, we have been involved in the most exciting construction projects in the country throughout Germany. With our team of over 420 colleagues, we do great things every day anew...
by Ransomware live - https://www.ransomware.live/#/group/incransom
🏴☠️ Qilin has just published a new victim : HAESUNG DS CO Ltd
We will publish data on next week
by Ransomware live - https://www.ransomware.live/#/group/qilin
🏴☠️ Play has just published a new victim : McHale Landscape Design
United States
by Ransomware live - https://www.ransomware.live/#/group/play
All the deals for InfoSec related software/tools this Black Friday / Cyber Monday.
I was a little late getting started with my wife pushing out a little 0-day baby as of today. Thank you CriimBow for kicking things off in the meantime!
https://github.com/0x90n/InfoSec-Black-Friday
I Doc View在线文档预览系统远程代码执行漏洞
I Doc View在线文档预览系统远程代码执行漏洞
by SeeBug - http://www.seebug.org/vuldb/ssvid-99785
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
Atlassian Confluence improper认证绕过到远程代码执行漏洞(CVE-2023-22518)
by SeeBug - http://www.seebug.org/vuldb/ssvid-99777
Vulnerabilità in Veeam ONE
(AL02/231107/CSIRT-ITA)
Veeam ha reso noto, tramite un bollettino di sicurezza, la presenza di alcune vulnerabilità nel prodotto Veeam ONE, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/vulnerabilita-in-veeam-one-al02-231107-csirt-ita
La Settimana Cibernetica del 5 novembre 2023
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 ottobre al 5 novembre 2023.
by CSIRT - https://www.csirt.gov.it/contenuti/la-settimana-cibernetica-del-5-novembre-2023
Aggiornamenti di sicurezza per Synology Router Manager
(AL02/231122/CSIRT-ITA)
Aggiornamenti di sicurezza sanano una vulnerabilità con gravità “alta” presente in Synology Router Manager (SRM), sistema operativo utilizzato nei router Synology.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-synology-router-manager-al02-231122-csirt-ita
Rilevate vulnerabilità in prodotti Fortinet
(AL03/231115/CSIRT-ITA)
Rilevate nuove vulnerabilità in alcuni prodotti Fortinet, di cui 2 con gravità “critica”.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevate-vulnerabilita-in-prodotti-fortinet-al03-231115-csirt-ita
Aggiornamenti di sicurezza per prodotti Mozilla
(AL01/231122/CSIRT-ITA)
Mozilla ha rilasciato aggiornamenti di sicurezza per sanare alcune vulnerabilità, di cui 7 con gravità “alta” nei prodotti Firefox, Firefox ESR, Firefox per iOS e Thunderbird.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-di-sicurezza-per-prodotti-mozilla-al01-231122-csirt-ita
Sintesi riepilogativa delle campagne malevole nella settimana del 11 – 17 Novembre 2023
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 28 campagne malevole, di cui 24 con obiettivi italiani e 4 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 464 indicatori di compromissione (IOC) individuati.
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-11-17-novembre-2023/
Matteo Franceschetti, the CEO of Eight Sleep, which makes the $2,295 smart mattress topper “The Pod” tweeted: “Breaking news: The OpenAI drama is real. We checked our data and last night, SF saw a spike in low-quality sleep. There was a 27 percent increase in people getting under 5 hours of sleep. We need to fix this. Source: @eightsleep data.”
https://www.404media.co/ceo-reminds-everyone-eightsleep-pod-collects-sleep-data-to-make-zeitgeisty-point-about-openai-drama/
Rilevato sfruttamento in rete della CVE-2023-47246 relativa a SysAid
(AL01/231110/CSIRT-ITA)
Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2023-47246 – già sanata dal vendor – che interessa la piattaforma di IT Service Management (ITSM) SysAid On-Prem.
by CSIRT - https://www.csirt.gov.it/contenuti/rilevato-sfruttamento-in-rete-della-cve-2023-47246-relativa-a-sysaid-al01-231110-csirt-ita
Aggiornamenti per Trend Micro Apex One
(AL02/231108/CSIRT-ITA)
Trend Micro corregge 11 vulnerabilità di sicurezza con gravità inerenti al prodotto Apex One.
by CSIRT - https://www.csirt.gov.it/contenuti/aggiornamenti-per-trend-micro-apex-one-al02-231108-csirt-ita
متاح الآن! بحث تيليغرام 2025 — أهم رؤى العام 
