dimanche 19 mai 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Microsoft Releases Security Updates to Address Remote Code Execution Vulnerability

Original release date: May 16, 2019 Microsoft has released security updates to address a remote code execution vulnerability in the following in-support and out-of-support systems:In-support systems: Windows 7, Windows Server 2008 R2, and...
Auteur: US Cert

Cisco Releases Security Updates for Multiple Products

Original release date: May 15, 2019 Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

VU#400865: Cisco Trust Anchor module (TAm) improperly checks code and Cisco IOS XE web UI does not sanitize user input

CVE-2019-1649:Secure Boot Tampering,also known as Thrangrycat The logic that handles the access controls to TAm within Cisco's Secure Boot improperly checks an area of code that manages the Field Programmable Gate Array(FPGA). The TAm is a...
Auteur: US Cert

VMware Releases Security Updates

Original release date: May 14, 2019 VMware has released security updates to address vulnerabilities in vCenter Server, ESXi, Workstation, and Fusion. An attacker could exploit some of these vulnerabilities to take control of an affected...
Auteur: US Cert

Adobe Releases Security Updates

Original release date: May 14, 2019 Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

Microsoft Releases May 2019 Security Updates

Original release date: May 14, 2019 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

Intel Releases Security Updates, Mitigations for Multiple Products

Original release date: May 14, 2019 Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The...
Auteur: US Cert

Samba Releases Security Updates

Original release date: May 14, 2019 The Samba Team has released security updates to address a vulnerability in Samba. An attacker could exploit this vulnerability take control of an affected system.The Cybersecurity and Infrastructure...
Auteur: US Cert

Facebook Releases Security Advisory for WhatsApp

Original release date: May 14, 2019 Facebook has released a security advisory to address a vulnerability in WhatsApp. A remote attacker could exploit this vulnerability to take control of an affected device.The Cybersecurity and...
Auteur: US Cert

Apple Releases Multiple Security Updates

Original release date: May 14, 2019 Apple has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The Cybersecurity...
Auteur: US Cert

Cisco Releases Security Updates

Original release date: May 13, 2019 Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

North Korean Malicious Cyber Activity

Original release date: May 09, 2019 The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have identified a malware variant—referred to as ELECTRICFISH—used by the North Korean government. The U.S....
Auteur: US Cert

Drupal Releases Security Update

Original release date: May 09, 2019 Drupal has released a security update to address a vulnerability in Drupal Core. A remote attacker could exploit this vulnerability to take control of an affected website.The Cybersecurity and...
Auteur: US Cert

Cisco Releases Security Update for Elastic Services Controller

Original release date: May 07, 2019 Cisco has released a security update to address a vulnerability in Cisco Elastic Services Controller. A remote attacker could exploit this vulnerability to take control of an affected system.The...
Auteur: US Cert

PrinterLogic Print Management Software Vulnerabilities

Original release date: May 05, 2019 The CERT Coordination Center (CERT/CC) has released information on vulnerabilities affecting PrinterLogic Print Management Software. A remote attacker could exploit these vulnerabilities to take control...
Auteur: US Cert

VU#169249: PrinterLogic Print Management Software fails to validate SSL certificates or the integrity of software updates.

PrinterLogic versions up to and including 18.3.1.96 are vulnerable to multiple attacks. The PrinterLogic agent,running as SYSTEM,does not validate the PrinterLogic Management Portal's SSL certificate,validate PrinterLogic update packages,or...
Auteur: US Cert

Cisco Releases Security Updates

Original release date: May 01, 2019 Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.   The...
Auteur: US Cert

Google Releases Security Updates for Chrome

Original release date: April 30, 2019 Google has released Chrome version 74.0.3729.131 for Windows, Mac, and Linux. This version addresses two vulnerabilities, one of which an attacker could exploit to take control of an affected...
Auteur: US Cert

CISA Releases Binding Operational Directive on Vulnerability Remediation

Original release date: April 30, 2019 The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) issued Binding Operational Directive (BOD) 19-02, Vulnerability Remediation Requirements for...
Auteur: US Cert

Oracle Releases Security Alert

Original release date: April 26, 2019 Oracle has released a security alert to address a vulnerability in WebLogic. A remote attacker could exploit this vulnerability to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

FTC Releases Article on Keeping Children Safe Online

Original release date: April 26, 2019 The Federal Trade Commission (FTC) has released an article with tips for parents to keep their children safe online.The Cybersecurity and Infrastructure Security Agency (CISA) encourages consumers to...
Auteur: US Cert

ICS Releases BIND Security Updates

Original release date: April 25, 2019 The Internet Systems Consortium (ISC) has released updates that address vulnerabilities in versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit these vulnerabilities to...
Auteur: US Cert

Google Releases Security Update for Chrome

Original release date: April 23, 2019 Google has released Chrome version 74.0.3729.108 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system.The...
Auteur: US Cert

Dutch NCSC Releases Updated TLS Guidelines

Original release date: April 23, 2019 The Dutch National Cyber Security Centre (NCSC) has published an update to their Transport Layer Security (TLS) protocol guidelines, which aim to improve TLS configuration security.The Cybersecurity...
Auteur: US Cert

Drupal Releases Security Updates

Original release date: April 17, 2019 Drupal has released security updates to address multiple vulnerabilities in Drupal Core. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert
12345678910Last

Événements SSI

READY FOR IT

La première édition de Ready For IT se déroule du 20 au 22 mai 2019 à Monaco (Grimaldi Forum) : conférences, keynotes, ateliers et rendez-vous one-to-one. Organisé par DG Consultants.

Présentation de l'événement par l'organisateur

DG Consultants, l’organisateur depuis 18 ans des Assises de la Sécurité, innove en lançant Ready For It, un nouveau rendez-vous business, centré sur la convergence des technologies et l’expérience client.
Pourquoi ce nouvel événement ?
Parce que la demande explose de la part des entreprises qui sont toutes engagées dans la transformation numérique.
Tandis que les fournisseurs font évoluer leurs offres et s’organisent en écosystèmes technologiques afin d’ être au plus proches des besoins de leurs clients.
Entre les impératifs business, les demandes des métiers, les contraintes techniques, les promesses des nouveaux concepts (IA, BlockChain…), les organisations sont en attente de solutions, de conseils et de service.
S’engager dans le Cloud ?
Oui mais comment et avec quel partenaire ?
Structurer les données mais avec quelles technologies et dans quel cadre ? Et quid de la sécurité qui doit désormais être au cœur de tous les processus IT ?
Voilà pourquoi DG Consultants, la référence dans le monde des rencontres d’affaires a conçu Ready For It.
Pour réunir dans un cadre convivial et autour de contenu de qualité tous les acteurs importants de l’IT, mais également les start-ups qui savent apporter l’innovation et la « disruption ».
Rendez-vous du 20 au 22 mai 2019 à Monaco !

Plus d'infos sur le site dédié à l'événement.

 

HACK IN PARIS

Pour sa 9ème édition la conférence Hack In Paris sur la sécurité IT se tient du 16 au 20 juin 2019 à Paris, Maison de la Chimie. Organisée par Sysdream.

RSS