Day: October 31, 2022

Emerging Threats Enterprise Vulnerabilities

Five useful lists and tools for identifying resources with vulnerable OpenSSL in them

The OpenSSL project team will release a new version of the OpenSSL library (version 3.0.7) on Tuesday to address a critical vulnerability in version 3.0 to 3.6 of the widely used open source, command-line toolkit [184 words]. Five useful tools and lists for keeping on top of the OpenSSL vulnerability to be disclosed Nov 1. […]

Read More
Enterprise Supply Chain Vulnerabilities

ConnectWise patches critical flaw in its Recover and R1Soft Server Backup Manager technology

Vulnerability gives attackers a way to target thousands of MSPs and their downstream customers. Company urges customers to treat issue as a top priority [298 words]. What: ConnectWise has patched a critical, remote code execution vulnerability in its ConnectWise Recover and R1Soft Server Backup Manager (SBM) software. The flaw exists in ConnectWise Recover SBM v2.9.7 […]

Read More
Emerging Threats Enterprise Vulnerabilities

Four quick things to know about the critical bug in OpenSSL that will be disclosed Nov.1

The OpenSSL project team will release a new version of the OpenSSL library (version 3.0.7) on Tuesday to address a critical vulnerability in version 3.0 to 3.6 of the widely used open source, command-line toolkit [296 words]. Four key things to know: Impact will likely be wide: The OpenSSL team rates a vulnerability as “Critical” […]

Read More