Tag: Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: American Express Breach by Ex-employee
Advisory Overview American Express – a provider of credit, travel, and other business and personal finance services –advised some customers on September 30, 2019 that their personal and American Express account information may have been compromised and may be used...
Cybersecurity Threat Advisory: Comodo Security Breached by vBulletin Zero Day
Advisory Overview: Cybersecurity firm Comodo – who provides website security certificates and other services – recently suffered a breach of their web forum site which included usernames, IP addresses, and other data of forum users. Since many users re-use credentials...
Cybersecurity Threat Advisory: Microsoft Releases Patch for Internet Explorer Vulnerability
Advisory Overview: Microsoft has released an emergency patch for Internet Explorer (multiple versions) that fixes a critical vulnerability in that browser. By manipulating Internet Explorer via a specially-configured website, a threat actor can gain privileges equal to the user who...
Cybersecurity Threat Advisory: LastPass Bug Leaks Credentials From Previous Site
Advisory Summary: LastPass is a very popular and widely used password manager – software designed to save user passwords, create secure passwords, and automatically fill in usernames and passwords on websites. Recently, security researchers have discovered that JavaScript embedded in...
Cybersecurity Threat Advisory: UK National Cyber Security Centre Urges Python Migration
Advisory Overview: The UK National Cyber Security Centre (NCSC) has warned developers to migrate from Python 2.X to Python 3.X based code due to an upcoming end of life date of January 1st, 2020. By continuing to use unsupported versions...
Cybersecurity Threat Advisory: Pulse Connect Secure VPN and FortiGate SSL VPN Vulnerability
Advisory Overview: Researchers have discovered critical security flaws in FortiGate and Pulse Connect Virtual Private Network (VPN) systems. VPN’s are routinely used to secure online communication, such as between a remote worker’s desktop and the corporate network, and are very...
Cybersecurity Threat Advisory: Supplemental Advisory for the BlueKeep Vulnerability
Advisory Overview: Microsoft recently undertook efforts to protect Windows desktops and servers against a threat known as BlueKeep, a vulnerability in Remote Desktop Protocol – a tool used to remotely access a Windows desktop or server. During these efforts, Microsoft...
Cybersecurity Threat Advisory: A New ‘Arbitrary File Copy’ Vulnerability Affects ProFTPD
Advisory Overview A popular and widely used server software package called ProFTPd has been found to have a vulnerability. This software runs on many different types of servers, including Windows, UNIX, and Linux; and provides File Transfer Protocol (FTP) services....
Cybersecurity Threat Advisory: Capital One Data Breach Disclosure
Overview: On Monday June 29, 2019, Capital One (a financial services company that handles credit cards for their own brand and many 3rd-Party brands) publicly disclosed a significant data breach exposing personally identifiable information for millions of their customers. The...
Cybersecurity Threat Advisory: Router Attack has Hijacked over 180,000 Brazilian routers
Advisory Overview Threat actors have been changing settings on home and small-business routers manufactured by D-Link in order to re-route users to malicious websites. The changes are made after a user loads a website that contains a “poisoned” advertisement –...
