jeudi 20 juin 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

ISC Releases BIND Security Updates

Original release date: June 19, 2019 The Internet Systems Consortium (ISC) has released updates that address a vulnerability in versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit this vulnerability to...
Auteur: US Cert

Cisco Releases Security Updates for Multiple Products

Original release date: June 19, 2019 Cisco has released security updates to address vulnerabilities in multiple Cisco products.  A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

Oracle Releases Security Advisory for WebLogic

Original release date: June 19, 2019 Oracle has released a security alert to address a vulnerability in WebLogic. A remote attacker could exploit this vulnerability to take control of an affected system. This vulnerability was detected in...
Auteur: US Cert

Samba Releases Security Updates

Original release date: June 19, 2019 The Samba Team has released security updates to address vulnerabilities in Samba 4.9 and all versions of Samba from 4.10 onward. An attacker could exploit these vulnerabilities to cause a...
Auteur: US Cert

DHS Email Phishing Scam

Original release date: June 18, 2019 The Cybersecurity and Infrastructure Security Agency (CISA) is aware of an email phishing scam that tricks users into clicking on malicious attachments that look like legitimate Department of Homeland...
Auteur: US Cert

Mozilla Releases Security Updates for Firefox and Firefox ESR

Original release date: June 18, 2019 Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system. This vulnerability was...
Auteur: US Cert

Mozilla Releases Security Update for Thunderbird

Original release date: June 13, 2019 Mozilla has released a security update to address vulnerabilities in Thunderbird. An attacker could exploit these vulnerabilities to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

Google Releases Security Updates for Chrome

Original release date: June 13, 2019 Google has released Chrome 75.0.3770.90 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker can exploit to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

Exim Releases Security Patches

Original release date: June 13, 2019 Exim has released patches to address a vulnerability affecting Exim versions 4.87–4.91. A remote attacker could exploit this vulnerability to take control of an affected email server. This vulnerability...
Auteur: US Cert

FTC Releases Alert on Updating Software

Original release date: June 13, 2019 The Federal Trade Commission (FTC) has released an alert on keeping software up to date to help protect sensitive information such as financial and tax information.The Cybersecurity and Infrastructure...
Auteur: US Cert

Cisco Releases Security Update for Cisco IOS XE

Original release date: June 12, 2019 Cisco has released a security update to address a vulnerability in Cisco IOS XE. A remote attacker could exploit this vulnerability to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

Intel Releases Security Updates, Mitigations for Multiple Products

Original release date: June 11, 2019 Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

Microsoft Releases June 2019 Security Updates

Original release date: June 11, 2019 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

Adobe Releases Security Updates

Original release date: June 11, 2019 Adobe has released security updates to address vulnerabilities affecting ColdFusion, Adobe Campaign, and Adobe Flash Player. An attacker could exploit some these vulnerabilities to take control of an...
Auteur: US Cert

CIS Releases 2018 Year in Review

Original release date: June 10, 2019 The Center for Internet Security (CIS) has released its 2018 Year in Review. CIS is home to the Multi-State Information Sharing & Analysis Center (MS-ISAC), a Cybersecurity and Infrastructure Security...
Auteur: US Cert

IC3 Issues Alert on HTTPS Phishing

Original release date: June 10, 2019 The Internet Crime Complaint Center (IC3) has released an alert on Hypertext Transfer Protocol Secure (HTTPS) phishing—a scheme which lures email recipients into visiting malicious websites that look...
Auteur: US Cert

IRS Warns of New Tax Scams

Original release date: June 07, 2019 The Internal Revenue Service (IRS) has issued a reminder urging consumers to look out for two new variations of tax-related phone and email scams. The phone scam involves pre-recorded messages...
Auteur: US Cert

FBI Releases Article on Protected Voices Campaign

Original release date: June 06, 2019 The Federal Bureau of Investigation (FBI) has released an article on the Protected Voices initiative designed to mitigate the risk of cyber influence operations targeting U.S. elections. As part of the...
Auteur: US Cert

VMware Releases Security Updates for Tools and Workstation

Original release date: June 06, 2019 VMware has released security updates to address vulnerabilities affecting Tools 10 and Workstation 15. An attacker could exploit one of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

Cisco Releases Security Updates for Multiple Products

Original release date: June 05, 2019 Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

NSA Releases Advisory on BlueKeep Vulnerability

Original release date: June 04, 2019 The National Security Agency (NSA) has released a cybersecurity advisory for CVE-2019-0708—a vulnerability dubbed BlueKeep. Although Microsoft has issued a patch, potentially millions of machines are...
Auteur: US Cert

Google Releases Security Update for Chrome

Original release date: June 04, 2019 Google has released Chrome version 75.0.3770.80 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system. The...
Auteur: US Cert

VU#576688: Microsoft windows RDP Network Level Authenticaion can bypass the Windows lock screen

Microsoft Windows Remote Desktop supports a feature called Network Level Authentication(NLA),which moves the authentication aspect of a remote session from the RDP layer to the network-layer. The use of NLA is recommended to reduce the attack...
Auteur: US Cert

VU#877837: Multiple vulnerabilities in Quest (Dell) Kace K1000 Appliance

CVE-2018-5404:The Dell Kace K1000 Appliance allows an authenticated,remote attacker with least privileges('User Console Only' role)to potentially exploit multiple Blind SQL Injection vulnerabilities to retrieve sensitive information from the...
Auteur: US Cert

Apple Releases Security Updates for AirPort Extreme, AirPort Time Capsule

Original release date: May 30, 2019 Apple has released AirPort Base Station Firmware Update 7.91 to address vulnerabilities in AirPort Extreme and AirPort Time Capsule wireless routers. A remote attacker could exploit some of these...
Auteur: US Cert
12345678910Last

Événements SSI

HACK IN PARIS

Pour sa 9ème édition la conférence Hack In Paris sur la sécurité IT se tient du 16 au 20 juin 2019 à Paris, Maison de la Chimie. Organisée par Sysdream.

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

Présentation par l'organisateur



Retour sur Les Assises 2018

La 18ème édition des Assises de la Sécurité à Monaco, c’est terminé ! Encore merci aux 2800 participants dont les 160 partenaires qui pendant trois jours se sont retrouvés pour faire vivre cet événement unique en France. Conférences, one-to-one, tables-rondes, ateliers, moments de networking… Par leur contenu, par la qualité des visiteurs et par la richesse des échanges, les Assises se positionnent plus que jamais comme le rendez-vous incontournable de tous les professionnels de la cybersécurité. A l’image du marché qui ne cesse d’évoluer, les Assises savent adapter leur offre afin de répondre au mieux aux attentes du secteur. Ainsi cette édition a-t-elle voulu mettre en avant les grands enjeux du moment en multipliant les prises de parole, les démonstrations et les retours d’expérience.

Rendez-vous maintenant pour la prochaine édition qui aura lieu du 9 au 12 octobre 2019

Plus d'informations sur le site dédié à l'événement.

RSS