Security Affairs

DECEMBER 21, 2021

Google found more than 35,000 Java packages in the Maven Central repository that are impacted by flaws in the Apache Log4j library. ” reads the report published by Google. “As far as ecosystem impact goes, 8% is enormous.” ” reads the report published by Google. “As far as ecosystem impact goes, 8% is enormous.”

Libraries 364

Libraries Security IT Cybersecurity 364

Security Affairs

AUGUST 4, 2021

IN FRA:HALT is a set of vulnerabilities affecting a popular TCP/IP library commonly OT devices manufactured by more than 200 vendors.

Manufacturing 332

Manufacturing Libraries Cloud Security 332

Security Affairs

DECEMBER 17, 2023

“Today we experienced an exploit on the Ledger Connect Kit, a Javascript library that implements a button allowing users to connect their Ledger device to third party DApps (wallet-connected Web sites). This is a good example of the industry working swiftly together to address security challenges.”

Phishing 352

Phishing Libraries Authentication Access 352

Security Affairs

SEPTEMBER 8, 2024

This issue arises because the GeoTools library API, which GeoServer uses, evaluates property/attribute names for feature types in a way that unsafely passes them to the commons-jxpath library, allowing arbitrary code execution. GeoServer versions prior to 2.23.6,

Libraries 338

Libraries Encryption Cybersecurity Access 338

AIIM

OCTOBER 2, 2019

On this episode of the AIIM on Air Podcast , you host Kevin Craine continues the “I Am AIIM” interview series with a look at Intelligent Information Management (IIM) in the Transportation industry. What are the challenges and opportunities with IIM in this industry? Click here to access our full library of episodes.

Digital transformation 126

Digital transformation Libraries Information governance Compliance 126

CILIP

OCTOBER 15, 2024

Honorary Fellowship Every year, CILIP invites Honorary Fellowship nominations from its membership to recognise professionals and individuals who have made a lasting impact on the world of libraries, and information and knowledge management. Nick Poole has been awarded Honorary Fellowship for his work within CILIP and across the sector.

Libraries 86

Libraries Access IT 86

CILIP

FEBRUARY 1, 2024

New Future Libraries project to support resilience and strategic growth in Public Libraries Future Libraries is a two-part initiative from CILIP to challenge and engage librarians and library leaders to reimagine libraries in a world of evolving living and working patterns in the context of a rapidly changing world.

Libraries 96

Libraries IT 96

Security Affairs

NOVEMBER 25, 2023

One of the country’s largest integrated energy companies, it holds a prominent position in the industry. Recently, the Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It also engages in international projects, contributing to the global energy landscape.

Ransomware 357

Ransomware Manufacturing Education Libraries 357

Security Affairs

APRIL 18, 2024

The attackers employed the lure of a free IP scanning tool to infect the systems with the Anunak backdoor and gain an initial foothold using living-off-the-land binaries, scripts, and libraries (lolbas).

Phishing 329

Phishing Manufacturing Libraries IT 329

AIIM

SEPTEMBER 18, 2019

On this episode of the AIIM on Air Podcast , your host Kevin Craine dives into the world of Intelligent Information Management in the Utilities Industry continuing the series of “I Am AIIM” member interviews. Click here to access our full library of episodes. Want more episodes like this?

Libraries 110

Libraries Information governance Government Access 110

CILIP

MARCH 6, 2024

CILIP has previously signalled deep concern over the lack of financial support to Local Authorities and the fact that the recently announced ‘Exceptional Financial Support’ (EFS) package will prompt a ‘fire sale’ of vital assets, including public libraries, in the 19 Councils concerned.

Libraries 85

Libraries Sales Risk Government 85

Security Affairs

APRIL 2, 2024

Researchers from the firmware security firm Binarly released a free online scanner to detect the CVE-2024-3094 Backdoor Last week, Microsoft engineer Andres Freund discovered a backdoor issue in the latest versions of the “xz” tools and libraries. The vulnerability was tracked as CVE-2024-3094 and received a CVSS score of 10.

Authentication 336

Authentication Libraries Access Security 336

Security Affairs

APRIL 3, 2019

The hackers targeting organizations across multiple industries and have also targeted foreign governments, dissidents, and journalists. The two loaders discovered by Cylance and used by the APT group use side-loaded DLLs and an AES128 implementation from Crypto++ library for payload decryption.

Libraries 267

Libraries Encryption Communications Manufacturing 267

Security Affairs

JUNE 16, 2020

The zero-day flaws reside in a popular low-level TCP/IP software library developed by Treck, Inc. that is used in devices made by more than 100 organizations in various industries. “The JSOF research lab has discovered a series of zero-day vulnerabilities in a widely used low-level TCP/IP software library developed by Treck, Inc.

Libraries 269

Libraries IoT Security Cybersecurity 269

Security Affairs

MARCH 28, 2020

CODESYS is a software platform, developed by the German company Smart Software Solutions, used in the automation industry for programming controller applications. dll (file version 3.5.15.20) library that doesn’t properly validate user-supplied data sent to the web server URL endpoint. The issue resides in the CmpWebServerHandlerV3.dll

Libraries 362

Libraries Communications Security IT 362

CILIP

NOVEMBER 29, 2023

Partnership to Campaign: Green Libraries is growing Global leaders, thinkers, and activists from industry and politics will gather this weekend in Dubai for the first day of COP28 to rethink, reboot, and refocus the climate agenda. The Green Libraries partnership gathered unprecedented momentum during its first year.

Libraries 83

Libraries Security IT 83

CILIP

AUGUST 30, 2024

CILIP writes to Libraries Minister CILIP has written to Sir Chris Bryant, detailing how CILIP can support the new government’s key missions. Chief Executive Louis Coiffait-Gunn reached out to the MP after he was announced as heading up responsibility for public libraries.

Libraries 75

Libraries Government IT 75

Security Affairs

APRIL 14, 2020

Experts from Paloalto Unit 42 published a report that analyzes the cross-section between the various types of Coronavirus-themed attacks aimed at organizations in different industries. Experts noticed that the name of the file employed in this campaign references the date March 23, 2020, and it was not updated over the course of the campaign.

Ransomware 361

Ransomware Phishing Government File names 361

Security Affairs

JULY 1, 2023

This Linux version is 64-bit and also uses the Boost library, it uses the Crypto++ library instead of Windows CryptoAPI. The authors used Microsoft Linker version 14.35. In June 2023, the malware analyst rivitna published a sample of the ransomware that is compiled for Linux.

Ransomware 246

Ransomware Encryption Libraries Education 246

Security Affairs

APRIL 30, 2021

Experts found more than 25 RCE vulnerabilities that potentially affect a wide range of domains, from consumer and medical IoT to Industrial IoT, Operational Technology (OT), and industrial control systems. The full list of vulnerabilities is available in an advisory ( ICSA-21-119-04 ) published by the US DHS.

IoT 296

IoT Risk Libraries Authentication 296

Security Affairs

APRIL 2, 2019

Visit our online library by clicking here. . GIVE THEM INFOSEC KNOWLEDGE USING THIS MODEL AND GAIN THE HIGHEST RETENTION RATE IN THE INDUSTRY – THIS IS GAME CHANGING !!! We hope you enjoy this month’s edition…packed with over 140 pages of excellent content. InfoSec Knowledge is Power. BREAKING NEWS.

IT 264

IT Libraries Education Phishing 264

Security Affairs

APRIL 22, 2020

The two critical vulnerabilities are an out-of-bounds write bug and a heap overflow issue respectively, both reside in the MIME library used in Apple’s mail app, they are an out-of-bounds write bug and second, is a heap overflow issue. Experts pointed out that the second flaw requires no interaction for the exploitation.

Libraries 355

Libraries Cybersecurity Risk Access 355

Security Affairs

AUGUST 7, 2024

The group also claimed the hack of the British Library and China Energy Engineering Corporation. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The Rhysida ransomware group has been active since May 2023.

Ransomware 342

Ransomware Manufacturing Libraries Education 342

CILIP

AUGUST 6, 2024

Approaching AI at the National Library of Scotland Image of the National Library of Scotland by Magnus Hagdorn, from Flickr Robert Cawston, Director of Digital and Service Transformation, introduces a new AI Statement for the National Library of Scotland.

Libraries 78

Libraries Artificial Intelligence Metadata Data collection 78

CILIP

JANUARY 16, 2024

CILIP welcomes publication of Sanderson Review of Public Libraries CILIP has welcomed the publication of the findings of Baroness Sanderson of Welton’s Independent Review of Public Libraries, announced today at an event at the House of Lords attended by our CEO, Nick Poole.

Libraries 85

Libraries Government Education Communications 85

AIIM

JUNE 11, 2020

Then, we continue the AIIM member spotlight series with Karen Loftis, Director of Industry Product Management at Hyland. Click here to access our full library of episodes. Click here to check out this episode. Want more episodes like this?

Libraries 211

Libraries Cybersecurity Ransomware Cloud 211

Security Affairs

APRIL 2, 2021

TIM is one of the very few Italian industrial realities to conduct research of undocumented vulnerabilities, for this reason I suggest you to follow them carefully. The research team has identified a total of 49 published CVEs, as reported on the NVD (National Vulnerability Database) and on TIM’s Corporate website, available at [link].

B2B 219

B2B Libraries Authentication Marketing 219

Security Affairs

JULY 9, 2022

The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malware uses TOR exit nodes as a backup C2 infrastructure. Initial access is typically through infected removable drives, often USB devices. exe to execute a malicious command.

Manufacturing 283

Manufacturing Libraries Communications IT 283

Security Affairs

JULY 29, 2022

The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. Initial access is typically through infected removable drives, often USB devices. Then msiexec.exe launches a legitimate Windows utility, fodhelper.exe, which in turn run rundll32.exe

Manufacturing 308

Manufacturing Libraries Access Communications 308

Security Affairs

AUGUST 21, 2019

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. “HIGHNOON is a backdoor that consists of multiple components, including a loader, dynamic-link library (DLL), and a rootkit.

Libraries 274

Libraries Education Phishing Encryption 274

Security Affairs

NOVEMBER 29, 2023

Recently, the Rhysida ransomware gang added the British Library and China Energy Engineering Corporation to the list of victims on its Tor leak site. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware 350

Ransomware Manufacturing Education Libraries 350

Security Affairs

APRIL 23, 2020

Somehow, this operation found its way onto the NSA’s radar pre-2013, as far as I can tell, it’s eluded specific coverage from the security industry. .” reads a blog post published by Guerrero-Saade. The malware uses Subcomponent DLLs to implement hot mic and screengrab features, along with keylogging features.

Libraries 349

Libraries Cybersecurity Access IT 349

Security Affairs

DECEMBER 26, 2023

The group also claimed the hack of the British Library and China Energy Engineering Corporation. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The Rhysida ransomware group has been active since May 2023.

Ransomware 349

Ransomware Manufacturing Education Libraries 349

Security Affairs

JANUARY 15, 2023

Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4 Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4

Security 246

Security Ransomware Libraries Phishing 246

CILIP

MARCH 1, 2024

Libraries in 19 councils at risk of ‘fire sale’ with new Exceptional Financial Support Framework Image of birmingham library via wikimedia commons CILIP is sounding the alarm over a potential 'fire sale' of library buildings following the Government announcement of 'exceptional financial support' to 19 Councils.

Libraries 88

Libraries Sales Risk Government 88