Tag: Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Google Chrome Releases Patches for Multiple Vulnerabilities
Threat Update Following the confirmation of four serious Chrome vulnerabilities this month, Google has revealed five new vulnerabilities with a rating of “High” as well as 11 other less severe flaws known to affect versions of Chrome prior to the...
Cybersecurity Threat Advisory: Apache Zero-Day Vulnerability Actively Exploited
Threat Update There are two vulnerabilities in Apache HTTP Web Server version 2.4.49 that are under active exploitation. The first vulnerability enables an attacker to perform path traversal, file disclosure, and remote code execution (RCE) abilities. The second allows the...
Cybersecurity Threat Advisory: Twitch.tv Hacked with 125GB of Data Dumped
Threat Update On Wednesday, October 6th, 2021, the streaming platform Twitch confirmed that it had been breached. The party responsible for this attack dumped 125 GB of data to the Internet on Wednesday. The dump contains highly sensitive information for...
Cybersecurity Threat Advisory: VMWare vCenter PoC Exploit Available
Threat Update Recently, VMWare, a global virtualization and cloud computing vendor, was informed of a critical vulnerability that affects certain versions of its vCenter service. Successful exploitation of this vulnerability could allow an attacker to upload arbitrary files and execute...
Cybersecurity Threat Update: Regarding the Recent Facebook BGP/DNS Outage
Threat Update On October 4, 2021, the global social network Facebook and its associated platforms faced a global outage that lasted approximately six hours. This outage not only impacted all Facebook users, but it also blocked internal communication between Facebook...
Cybersecurity Threat Advisory: Threat Actors Targeting VoIP Providers with DDoS Attacks
Threat Update In recent weeks, threat actors have been targeting voice over Internet Protocol (VoIP) providers with distributed denial of service (DDoS) attacks that have impacted the mission-critical communications, including 911 services, of numerous organizations. Bandwidth.com has become the latest...
Cybersecurity Threat Advisory: Microsoft Azure OMIGOD Vulnerability
Threat Update Microsoft’s September 2021 Patch Tuesday addressed four major vulnerabilities that impact users of Microsoft’s Azure platform. They are tracked as CVE-2021-38647 and CVE-2021-38648. They are referred to as OMIGOD, referencing “Open Management Infrastructure,” the agent which makes Azure...
Cybersecurity Threat Advisory: BulletProofLink Phishing-as-a-Service (PhaaS) Campaign
Threat Update Microsoft recently released the results and analysis from its deep dive into BulletProofLink, a large-scale phishing-as-a-service (PHaaS) operation that follows a software-as-a-service (SaaS) business model. This model allows threat actors to purchase phishing kits and email templates in...
Cybersecurity Threat Advisory: AWS Workspaces Remote Code Execution
Threat Update Rhino Security Labs has discovered a vulnerability in the AWS WorkSpaces desktop client, tracked as CVE-2021-38112, which allows commands to be executed if a victim opens a malicious WorkSpaces URI from their browser. Since the report’s release, Amazon...
Cybersecurity Threat Advisory: Malicious Word Files Disguised as Windows 11 Documentation
Threat Update Security researchers have discovered recent attempts by threat actors to infect machines with malicious Word documents containing VBA macros and JavaScript to plant a backdoor and create persistence. These Word documents are disguised as documentation or information related...
