433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (727) 493-2351

Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)

A source code audit has revealed two critical vulnerabilities affecting git, the popular distributed version control system for collaborative software development. The latest git vulnerabilities CVE-2022-41903 is an out-of-bounds memory write flaw in log formatting and CVE-2022-23251 is a truncated allocation leading to out-of-bounds write via large number of attributes. Both may result in remote code execution. More technical info about each of the flaws can be found in this post by X41 D-Sec researchers … More → The post Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251) appeared first on Help Net Security.
http://news.poseidon-us.com/Sh73fZ

Save costs and achieve more with Red Hat OpenShift managed services

Integrating Kubernetes into complex IT environments yourself can be difficult and time consuming. Red Hat works with key cloud provider partners to deliver fully managed container environment services that simplify deployment and operations. Four Red Hat® OpenShift® managed services are available, so you can choose the option that best fits your organization’s needs. Each service allows you to take advantage of flexible pricing models, reduce your support costs, increase operational efficiency, and free your staff to innovate. Read this brief to see how you can save costs and achieve more with Red Hat OpenShift managed services.
http://news.poseidon-us.com/Sh6HLw

EU cyber resilience regulation could translate into millions in fines

The EU Commission’s Cyber Resilience Act (CRA) is intended to close the digital fragmentation problem surrounding devices and systems with network connections – from printers and routers to smart household appliances and industrial control systems. Industrial networks and critical infrastructures require special protection. According to the European Union, there is currently a ransomware attack every eleven seconds. In the last few weeks alone, among others, a leading German children’s food manufacturer and a global Tier1 … More → The post EU cyber resilience regulation could translate into millions in fines appeared first on Help Net Security.
http://news.poseidon-us.com/Sh5yXh

How monitoring user activity on unclassified networks can help protect classified networks and data

Federal organizations like the Defense Department and agencies in the intelligence community manage large volumes of highly sensitive information. To protect that data, they operate classified networks that must meet specific cybersecurity guidelines.
http://news.poseidon-us.com/Sh5L7C

Google ads increasingly pointing to malware

The FBI has recently warned the public about search engine ads pushing malware diguised as legitimate software – an old tactic that has lately resulted in too many malicious ads served to users searching for software, cracked software, drivers – anything that can be downloaded, really – via Google and Bing. The recent explosion of search engine malvertising Malware peddlers employ a variety of methods to deliver their wares to unsuspecting users: Malicious links or … More → The post Google ads increasingly pointing to malware appeared first on Help Net Security.
http://news.poseidon-us.com/Sh44pg

Devo DeepTrace helps security teams investigate alerts and suspicious events

Devo Technology unveiled Devo DeepTrace, an autonomous alert investigation and threat hunting solution that uses attack-tracing artificial intelligence (AI) to advance how security teams identify attacks, investigate threats and secure their organizations. DeepTrace augments the work security analysts do by building complete traces of suspicious activity detected across an organization’s infrastructure, which alleviates much of their mundane, repetitive tasks. “Today’s SOCs are under strain and SOC analysts in particular are overwhelmed with the ever-increasing volume … More → The post Devo DeepTrace helps security teams investigate alerts and suspicious events appeared first on Help Net Security.
http://news.poseidon-us.com/Sh318g

DigiCert Trust Lifecycle Manager unifies CA-agnostic certificate management

DigiCert has released DigiCert Trust Lifecycle Manager, a digital trust solution unifying CA-agnostic certificate management and public key infrastructure (PKI) services. Trust Lifecycle Manager integrates with DigiCert’s public trust issuance for a full-stack solution governing seamless management of corporate digital trust infrastructure. Organizations that prioritize a unified digital trust strategy add to their top line and protect their bottom line. At the top line, digital trust accelerates customer acquisition, improves employee productivity and drives digital … More → The post DigiCert Trust Lifecycle Manager unifies CA-agnostic certificate management appeared first on Help Net Security.
http://news.poseidon-us.com/Sh317Z