Aggregator

The CyberSaint team has been working hard to deliver the latest updates to streamline and improve our customers’ user experience and address their top-of-mind challenges. We’re thrilled to announce the latest additions and updates to the CyberStrong solution, which includes an entirely new navigation experience, a new Home Page, Hierarchical Role-Based Controls, and Custom Risk Types and Categories. Additionally, we’ve redesigned the NIST 800-30 Risk Register. 

The post November Product Update appeared first on Security Boulevard.

随着网络婚恋交友平台的日益火爆，人们寻求真爱的方式逐渐转向虚拟空间，这也为不法分子提供了可乘之机。近年来网恋诈骗手段翻新、迭代升级，出现以下特点，值得关注。

11月24日，中央网信办等四部门联合印发通知，部署开展“清朗·网络平台算法典型问题治理”专项行动，提出要在3个月左右的时间内对网络平台算法存在的典型问题进行重点整治。

11月21日，以“‘廿’念不忘，‘新’之所向”为主题的“第二十届数字金融联合宣传年智享2024特别活动”在京举行，活动由中金金融认证中心有限公司(CFCA)、数字金融联合宣传年、中国电子银行网主办。

图说《电信网络诈骗及其关联违法犯罪联合惩戒办法》。

随着人工智能技术的飞速发展，深度伪造技术逐渐进入我们的生活，在带来惊喜和便利的同时，也暴露出一系列风险隐患，如不注意防范，甚至可能危害国家安全。

11月25日，360数字安全集团漏洞研究院发布了全球首份一份《大模型安全漏洞报告》，揭示了当前以大模型为核心的大量技术应用在计算机安全领域带来的诸多新风险和挑战。

公安部26日举行新闻发布会，通报公安部会同国家发展和改革委员会、工业和信息化部、中国人民银行联合印发《电信网络诈骗及其关联违法犯罪联合惩戒办法》有关情况。

Риски злонамеренной эксплуатации возрастают с каждым днём без обновлений.

共筑数字城市安全防线

Незаменимые практики безопасности, о которых вы, возможно, забыли.

A vulnerability has been found in Oracle MySQL Connectors up to 8.0.20 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Connector/C++. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2020-1967. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Connectors up to 8.0.20 and classified as critical. Affected by this issue is some unknown functionality of the component Connector/ODBC. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2020-1967. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Server up to 5.6.48/5.7.30/8.0.20. It has been declared as critical. This vulnerability affects unknown code of the component Encryption. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2020-1967. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Enterprise Monitor up to 4.0.12/8.0.20. It has been classified as problematic. This affects an unknown part of the component General. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2020-1967. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in OpenSSL 1.1.1d/1.1.1e/1.1.1f. It has been rated as problematic. This issue affects the function SSL_check_chain of the component TLS 1.3 Handshake Handler. The manipulation as part of Application leads to null pointer dereference. The identification of this vulnerability is CVE-2020-1967. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, has been found in Oracle HTTP Server 12.2.1.4.0. This issue affects some unknown processing of the component OpenSSL. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2020-1971. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.