Tag: Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Over 1 Million Windows RDP Credentials Leaked
Threat Update Hacker group UAS has had 1.3 million RDP credentials for Windows servers leaked by security researchers. The compromised credentials could possibly allow a malicious actor to log into a compromised RDP server. It is imperative to keep best...
Cybersecurity Threat Advisory: SonicWall Zero-Day Vulnerabilities
Threat Update SonicWall, a security hardware manufacturer, has released patches to address a set of three zero-day vulnerabilities. These vulnerabilities affect both on-premises and hosted Email Security products. These vulnerabilities could allow for attackers to create administrative accounts, upload arbitrary...
Cybersecurity Threat Advisory 0021-21: 4/13/21 Microsoft Exchange Patches 2.0
Threat Update Due to the rise in targeted attacks on on-prem Microsoft Exchange servers, Microsoft, security vendors, and threat actors across the world have been looking for vulnerabilities within Microsoft Exchange services. This past Tuesday (4/13/2021), Microsoft has issued another...
Cybersecurity Threat Advisory: Critical VMware Carbon Black Cloud Vulnerability
Threat Update A critical vulnerability was recently discovered in the VMWare Carbon Black Workload appliance that could allow an attacker to take control of a vulnerable system. A successful exploit would give an attacker the ability to obtain a valid...
Cybersecurity Threat Advisory: ATPs Exploiting FortiOS Vulnerabilities
Threat Update The FBI and CISA released a joint cybersecurity advisory documenting that a number of APTs have been seen in the wild scanning for three FortiOS vulnerabilities (CVE-2018-13379, CVE-2019-5591 and CVE-2020-12812). These vulnerabilities, if exploited, can allow unauthorized remote...
Cybersecurity Threat Advisory: Purple Fox Rootkit
Threat Update The Purple Fox rootkit has recently improved propagation capabilities which makes it easier to spread through a network. This could make it easier for threat actors to steal data from or potentially infect compromised machines with other types...
Cybersecurity Threat Advisory: MacOS Malware XcodeSpy
Threat Update A malicious version of the macOS development environment Xcode has been spotted in the wild. Dubbed “XcodeSpy,” its main function is to use a custom Run Script to connect to a C&C server when a compromised application is...
Cybersecurity Threat Advisory: AWS S3 Bucket Exposure Causes Patient Data Breach
Threat Update Over 50,000 patient records at a Utah-based COVID-19 testing service were exposed due to a common AWS S3 cloud security misconfiguration. This mishap led to a severe breach of patient data confidentiality, giving malicious actors an opportunity to...
Cybersecurity Threat Advisory: WordPress Elementor Vulnerability
Threat Update Wordfence has advised that all users of the popular WordPress website builder plugin Elementor update to the latest version available (currently version 3.1.4), including users of either the Free version or Pro version. There is a stored XSS...
Cybersecurity Threat Advisory: Numerous IOT Cameras Hacked
Threat Update Verkada Inc, an organization providing IOT security cameras to public and private organizations across the globe, has reportedly had its camera systems compromised. Attackers claim to have breached the organization and accessed both live and archived camera feeds...
