Monday , December 23 2024

Recent Posts

SonicWall Discover
Critical Zero-Day in Apache OfBiz ERP System

Apache oFBiz

A new security flaw was found in Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system. This flaw could be used to get around authentication protections. The vulnerability, CVE-2023-51467, is found in the login feature and is caused by a partial fix for another serious vulnerability (CVE-2023-49070, CVSS score: 9.8) …

Read More »

CISA Finalizes Microsoft 365 Secure Configuration Baselines

microsoft 365

CISA started the SCuBA project to improve the security of email and cloud environments in the federal government. The project aims to enhance the security features of commonly used products and services and provide better visibility at the enterprise level to support our cybersecurity goals. This meant creating secure configurations …

Read More »

Daily Cybersecurity update, December 27, 2023

update

Cyberattacks and data breaches are still happening, causing harm to organizations and their confidential information. Recently, Yakult was attacked and had 95GB of stolen data leaked. LoanCare, a subsidiary of Fidelity National Financial, also had a data breach affecting over one million people. In Michigan, a healthcare firm had a …

Read More »