433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (727) 493-2351

Citrix NetScaler zero-day exploited in the wild, patch is available (CVE-2023-3519)

Citrix has patched three vulnerabilities (CVE-2023-3519, CVE-2023-3466, CVE-2023-3467) in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway), one of which is a zero-day being exploited by attackers. A zero-day patched (CVE-2023-3519) CVE-2023-3519 is a remote code execution (RCE) vulnerability that could allow an unauthenticated threat actor to execute arbitrary code on a vulnerable server. At this time there is no public PoC, but the vulnerability has been observed being exploited in the … More → The post Citrix NetScaler zero-day exploited in the wild, patch is available (CVE-2023-3519) appeared first on Help Net Security.
http://news.poseidon-us.com/SsPvtx

VirusTotal leaked data of 5,600 registered users

VirusTotal has suffered a data leak that exposed the names and email addresses of 5,600 of its registered users. The leaked data reportedly includes information about employees of US and German intelligence agencies (among others). VirusTotal data leak exposed exploitable information Google-owned VirusTotal is a popular online service for analyzing suspicious files and URLs to detect malware and malicious content through antivirus engines and website scanners. As confirmed by Google to German publication Der Spiegel, … More → The post VirusTotal leaked data of 5,600 registered users appeared first on Help Net Security.
http://news.poseidon-us.com/SsMX95

Intel community’s new data strategy looks to lay foundations of AI future

Intelligence Community Chief Data Officer Lori Wade says a new IC data strategy prioritizes a more data-savvy workforce, and sets the groundwork for the IC to use artificial intelligence tools.
http://news.poseidon-us.com/SsMCwK

Splunk partners with Microsoft to strengthen digital resilience

Splunk and Microsoft are partnering to build Splunk’s enterprise security and observability offerings on Microsoft Azure. Additionally, for the first time, Splunk solutions will be available for purchase on the Microsoft Azure Marketplace. “Splunk and Microsoft’s strategic partnership will provide our joint customers and partners with advanced digital resilience to help them remain secure and up and running at every step of their cloud journey,” said Gary Steele, President and CEO of Splunk. “Splunk delivers … More → The post Splunk partners with Microsoft to strengthen digital resilience appeared first on Help Net Security.
http://news.poseidon-us.com/SsM58d

CIOs are changing jobs midyear: What’s behind the timing?

Discover, Kellogg and Ingersoll Rand named new CIOs in July, giving incoming executives a chance to shape next year’s strategy.
http://news.poseidon-us.com/SsM46S

Fair Work Ombudsman caught up in HWL Ebsworth breach

As more agencies declare exposure.
http://news.poseidon-us.com/SsKfGW

Critical XSS vulnerability in Zimbra exploited in the wild (CVE-2023-34192)

A critical cross site scripting (XSS) vulnerability (CVE-2023-34192) in popular open source email collaboration suite Zimbra is being exploited by attackers. About the vulnerability (CVE-2023-34192) CVE-2023-34192 could allow a remote authenticated threat actor to execute arbitrary code through a crafted script to the /h/autoSaveDraft function. It affects Zimbra Collaboration Suite (ZCS) v.8.8.15. The company has provided admins with instruction on how to apply the fix manually, by editing a single data file. “This vulnerability has … More → The post Critical XSS vulnerability in Zimbra exploited in the wild (CVE-2023-34192) appeared first on Help Net Security.
http://news.poseidon-us.com/SsJZQ8

IT customer service transitions make or break CX

“Transition points are where everything lives or dies,” Greg Sanker, former CIO and principle advisory director at Info-Tech Research Group, said.
http://news.poseidon-us.com/SsJDFg

Growing a 15,000 strong automotive cybersecurity group with John Heldreth

The furry in which the automotive community pried, prodded, and eventually outsmarted existing functions that are software-driven is nothing short of horrifying. While it seemed like automotive cybersecurity would never outpace these modern laptop-wielding gearheads, John Heldreth, Head of Car Security Operations at Volkswagen AG, had a different idea. Instead of trying to find solutions in a siloed manner, the automotive industry should have a place to collaborate, network, and take action against the rise … More → The post Growing a 15,000 strong automotive cybersecurity group with John Heldreth appeared first on Help Net Security.
http://news.poseidon-us.com/SsJ50P