433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (813) 563-2652

Week in review: Critical git vulnerabilities, increasingly malicious Google Search ads

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Cacti servers under attack by attackers exploiting CVE-2022-46169 If you’re running the Cacti network monitoring solution and you haven’t updated it since early December, now is the time to do it to foil attackers exploiting a critical command injection flaw (CVE-2022-46169). CircleCI breach post-mortem: Attackers got in by stealing engineer’s session cookie The attackers who pulled off the recent breach … More → The post Week in review: Critical git vulnerabilities, increasingly malicious Google Search ads appeared first on Help Net Security.
http://news.poseidon-us.com/ShGB40

Exterro acquires Zapproved to address critical business challenges

Exterro’s acquisition of Zapproved is the latest step in furthering Exterro’s vision to empower customers to proactively and defensibly manage their legal governance, risk and compliance obligations. It also represents another strategic milestone for Exterro in its partnership with Leeds Equity Partners, which originally acquired the business in 2018 and completed a recapitalization in 2022. Upon closing of the acquisition of Zapproved, Vista Equity Partners (“Vista”) will maintain a minority stake in the combined company. … More → The post Exterro acquires Zapproved to address critical business challenges appeared first on Help Net Security.
http://news.poseidon-us.com/ShFWYw

Vanta acquires Trustpage to accelerate its product innovation

Vanta has acquired Trustpage to transform trust into a marketable advantage for companies around the world. With the addition of Trustpage, Vanta is accelerating its product innovation and continuing to scale its industry-defining trust management platform for thousands of global customers to monitor, improve and demonstrate their security, and ultimately, establish and deepen trust. Relied on by nearly 400 companies worldwide, including Pendo, Sift and ZoomInfo, Trustpage is a centralized hub that reimagines how companies … More → The post Vanta acquires Trustpage to accelerate its product innovation appeared first on Help Net Security.
http://news.poseidon-us.com/ShFWY4

DShield Sensor JSON Log to Elasticsearch, (Sat, Jan 21st)

My current project has been to rebuild my home DShield sensor from a Rasberry Pi to a Ubuntu 20.04.5 LTS server to be able to process my sensor logs into Elasticsearh. I use as a guide the example listed here (my ELK is version 8.x) sending the cowrie.json logs to a remote ELK server (version 8.4.1) using Filebeat and Logstash. However, my steps were a little different than the reference:
http://news.poseidon-us.com/ShDyGl

Federal records chief says ‘culture of paper’ persists at agencies

U.S. Chief Records Officer Laurence Brewer talks about progress and challenges in realizing a fully electronic government.
http://news.poseidon-us.com/ShCHMk

Treasury Dept temporarily suspends investments in Civil Service Retirement and Disability Fund

In today’s Federal Newscast: The Treasury Department is temporarily suspending investments in the Civil Service Retirement and Disability Fund. Federal contracting officers have new training and certification requirements. And the State Department is launching a new program to resettle refugees in the U.S.
http://news.poseidon-us.com/ShB2tn