Software AG Continues Efforts Against $20M Ransomware Attack

Subscribe to Newsletters

Maximizing Database Performance to Improve Customer Experience
[Free Virtual Event] Managing Apps in a Multi-Cloud Environment
Quantifying the Benefits of a DevOps Strategy

Webinar Archives

White Papers

Software Exploits, a Technical Deep Dive into Vulnerabilities

The State of IT & Cybersecurity Operations 2020

2020 SANS Cyber Threat Intelligence Survey

7 Steps to Anywhere, Anytime Education

More White Papers

Video

All Videos

Cartoon

Latest Comment: Sorry, I cannot brush my teeth tonight. The toothbrush locked me out after three tries.

Cartoon Archive

Current Issue

Special Report: Computing’s New NormalThis special report examines how IT security organizations have adapted to the “new normal” of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Back Issues | Must Reads

Flash Poll

All Polls

How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world — and enterprise computing — on end. Here’s a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.

Download Now!

Special Report: Understanding Your Cyber Attackers

0 comments

2020 State of Cybersecurity Operations and Incident Response

0 comments

The Changing Face of Threat Intelligence

0 comments

More Reports

Twitter Feed

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database
CVE-2020-26546
PUBLISHED: 2020-10-12

** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in HelpDeskZ 1.0.2. The feature to auto-login a user, via the RememberMe functionality, is prone to SQL injection. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVE-2020-15250
PUBLISHED: 2020-10-12

In JUnit4 before version 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system’s temporary directory is shared between all users on that system. Because of this, when files and directories are written into this directory they ar…

CVE-2020-13903
PUBLISHED: 2020-10-12

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-12254. Reason: This candidate is a reservation duplicate of CVE-2020-12254. Notes: All CVE users should reference CVE-2020-12254 instead of this candidate. All references and descriptions in this candidate have been removed to preve…

CVE-2020-25825
PUBLISHED: 2020-10-12

In Octopus Deploy 3.1.0 to 2020.4.0, certain scripts can reveal sensitive information to the user in the task logs.

CVE-2020-12670
PUBLISHED: 2020-10-12

XSS exists in Webmin 1.941 and earlier affecting the Save function of the Read User Email Module / mailboxes Endpoint when attempting to save HTML emails. This module parses any output without sanitizing SCRIPT elements, as opposed to the View function, which sanitizes the input correctly. A malicio…

The post Software AG Continues Efforts Against $20M Ransomware Attack appeared first on Malware Devil.

https://malwaredevil.com/2020/10/12/software-ag-continues-efforts-against-20m-ransomware-attack/?utm_source=rss&utm_medium=rss&utm_campaign=software-ag-continues-efforts-against-20m-ransomware-attack