CISA, the FBI and others issued a warning that pro-Russian hackers are using simple tactics to break into water and wastewater systems. The U.S. has extremely limited laws requiring security so this will continue until we have a disaster. Details at lnkd.in/g7Xhm9uP

🚨 Attention #GitLab users!

A critical flaw (CVE-2023-7028) is being actively exploited, allowing account takeover by sending password reset emails to unverified addresses.

Read details: thehackernews.com/2024/05/cisa-w…

Update to the latest patched versions immediately.

CISA urges software devs to weed out path traversal vulnerabilities - Sergiu Gatlan
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

🛡️ #GitLab Community & Enterprise users: We added #CVE -2023-7028 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec

⚠️Cybersecurity and Infrastructure Security Agency issued three NEW public #ICS advisories. These advisories provide info about current security issues, vulnerabilities, & exploits surrounding ICS. More at cisa.gov/news-events/al…

🚨 Attention #GitLab users!

A critical flaw (CVE-2023-7028) is being actively exploited, allowing account takeover by sending password reset emails to unverified addresses.

thehackernews.com/2024/05/cisa-w…
#infosec
Update to the latest patched versions immediately.

米国CISAが悪用を確認した脆弱性をKEVに追加。

CVE-2023-7028 GitLab Community and Enterprise Editions Improper Access Control Vulnerability
GitLab CommunityおよびEnterprise…

Today #CISA put out a warning that the Peoples Republic of China is gearing up to cause a geopolitical crisis or conflict that will allow them to attack U.S. essential daily services, being *water and energy*

Why is no one talking about this?

cisa.gov/news-events/ne…

Eliminate the popular vulnerability of the year

cisa.gov/news-events/al…

#fuorimenu secondo voi cisa preparo per cena? Unica variante metterò la valeriana al posto della rucola e speriamo di non rivinarr il tutto

Organizations patch CISA KEV list bugs 3.5 times faster than others, researchers find therecord.media/kev-list-vulne…

CERT/CC reports a vulnerability in R programming language implementations. Review & apply recommendations at cisa.gov/news-events/al… #Cybersecurity #InfoSec

Cisa

não consigo dormir porque quero que chegue logo amanhã para eu colocar meu plano de dominação do mundo em prática

🚨🚨 ELECTION FRAUD 🚨🚨
BREAKING: Explosive new documents have exposed a secret meeting organized by the Cybersecurity and Infrastructure Security Agency (CISA) that involved several power players, including officials from Dominion Voting Systems and the FBI, to discuss the 2020…

Organizations patch Cybersecurity and Infrastructure Security Agency KEV list bugs 3.5 times faster than others, researchers find therecord.media/kev-list-vulne…

CISA/CISM系取ったらセキュリティ系の資格でつよつよなのGIAC認定かOffSecかなぁ
GIACは維持費とか色々高いから個人だと取得も維持も難しそうなイメージ
時代はOffSecか？ OSCP持ってますって人生に153回くらい言いたいもん

The NCSC urges all OT owners and operators, including essential service providers, to follow the mitigation advice in the new factsheet now to harden their defences⬇️
cisa.gov/resources-tool…

CISA says GitLab account takeover bug is actively exploited in attacks - Sergiu Gatlan
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…