Collaborate Disseminate
July’s critical patch update addresses 334 security vulnerabilities (including 61 rated critical) covering a vast swathe of the Oracle enterprise portfolio. Continue reading Oracle Sets All-Time Record with July Critical Patch Update
The US Treasury sanctioned five companies accusing them of helping the Russian government hack. But the founder of one of those companies vehemently denied the accusations. Continue reading Founder of Cybersecurity Company Says His Firm Was Sanctioned Because He was Born in Russia
The U.S. sanctioned five Russian entities and three Russian individuals on Monday under the authority of an Obama-era executive order on sanctioning those “engaging in significant malicious cyber-enabled activities.” Officials are targeting companies and individuals that they say worked with Russia’s Federal Security Service (FSB), the country’s chief intelligence agency, for offensive hacking capabilities. Some of the companies have offices in the U.S. The chief target of the sanctions is Digital Security, a Russia-based cybersecurity company that Treasury says “worked on a project that would increase Russia’s offensive cyber capabilities for the Russian Intelligence Services, to include the FSB.” Two other cybersecurity companies, ERPScan and Embedi, were sanctioned, as well as subsidiaries of Digital Security. Both of those companies have addresses in or around California’s Silicon Valley. None of the companies answered requests for comment. “The United States is engaged in an ongoing effort to counter malicious actors working at the behest of the Russian […]
The post U.S. sanctions Russian companies linked to FSB appeared first on Cyberscoop.
Continue reading U.S. sanctions Russian companies linked to FSB
Organizations running PeopleSoft exposed to the internet should pay attention to a remote code execution vulnerability patched in the latest Oracle Critical Patch Update. Continue reading Critical Code Execution Flaw Patched in PeopleSoft Core Engine
SAP fixed 23 vulnerabilities across roughly a dozen products on Tuesday, including a series of high-risk flaws in SAP POS and SAP Host Agent.
Continue reading SAP Patches High-Risk Flaws in SAP POS, Host Agent
SAP has issued an updated patch for a code-injection vulnerability affecting the TREX search engine integrated into more than a dozen SAP products. Continue reading SAP Updates Two-Year-Old Patch for TREX Vulnerability
Researchers at ERPScan today disclosed details and a proof-of-concept exploit for a SAP GUI remote code execution vulnerability patched last week. Continue reading SAP Vulnerability Puts Business Data at Risk for Thousands of Companies
Oracle patched 270 vulnerabilities, many remotely exploitable, across 45 different products as part of its quarterly Critical Patch Update (CPU) on Tuesday. Continue reading Oracle Patches 270 Vulnerabilities in Year’s First Critical Patch Update
Oracle fixed 253 vulnerabilities across 76 different products with its quarterly Critical Patch Update. Continue reading Oracle Fixes 253 Vulnerabilities in Last CPU of 2016