Security News > 2023 > July

Atlassian has released updates to address three security flaws impacting its Confluence Server, Data Center, and Bamboo Data Center products that, if successfully exploited, could result in remote code execution on susceptible systems. CVE-2023-22505 and CVE-2023-22508 allow an "Authenticated attacker to execute arbitrary code which has high impact to confidentiality, high impact to integrity, high impact to availability, and no user interaction," the company said.

While technology advancements and distributed workforces have created efficiencies and flexibility for companies, they've also created overcomplexity, which can increase security risk. 53% of senior IT decision-makers say their IT environment is more complex than it was two years ago.

Ivanti is warning users to update their Endpoint Manager Mobile mobile device management software to the latest version that fixes an actively exploited zero-day vulnerability. Dubbed CVE-2023-35078, the issue has been described as a remote unauthenticated API access vulnerability that impacts currently supported version 11.4 releases 11.10, 11.9, and 11.8 as well as older releases.

Apple has rolled out security updates to iOS, iPadOS, macOS, tvOS, watchOS, and Safari to address several security vulnerabilities, including one actively exploited zero-day bug in the wild. "Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1," the tech giant noted in its advisory.

74% of respondents using generative AI say it's already improving their ability to increase revenue, and the average daily time savings from generative AI is 33%-the equivalent of 2.5 hours every workday or 13 hours each workweek. Companies' top concern with not using generative AI is falling behind competitors-but hurdles like security concerns, lack of a cohesive AI strategy, and lack of internal policies to govern generative AI prevent adoption.

"Q2 2023 continued to highlight the growing ransomware threat facing organizations across the globe, from both established ransomware gangs and emerging or ephemeral opportunistic groups," said Drew Schmitt, GRIT Lead Analyst. For the first half of 2023, correlation between the total number of ransomware groups and total observed ransomware events suggests that newly emerging groups directly contribute to the rise in total victims.

Updated Midnight Blue, a security firm based in the Netherlands, has found five vulnerabilities that affect Terrestrial Trunked Radio, used in Europe, the United Kingdom, and many other countries by government agencies, law enforcement, and emergency services organizations. The security pros explain that the use of secret, proprietary cryptography has been a common theme in previously identified flaws affecting GSM, GMR, GPRS, DMR, and P25 - used in North America.

Midnight Blue, a security firm based in the Netherlands, has found five vulnerabilities that affect Terrestrial Trunked Radio, used in Europe, the United Kingdom, and many other countries by government agencies, law enforcement, and emergency services organizations. "The vulnerability in the TEA1 cipher is obviously the result of intentional weakening," the researchers state in their disclosure.

Microsoft Sharepoint and OneDrive for Business were briefly interrupted today after a German TLS certificate was mistakenly added to the main.com domains for the Microsoft 365 services. At approximately 3:08 PM ET today, a Microsoft 365 advisory 'SP659992' warned that users may be unable to access SharePoint Online and OneDrive for Business.

How to Easily Block IP Addresses From Accessing a Desktop or Server In this How to Make Tech Work tutorial, Jack Wallen shows how to add another layer of security to your Linux machines with just two files. Did you know there's a very easy way to block or allow IP addresses in Linux using two simple files? Those files are hosts.