Tag: Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Threat Actors Compromise FBI Email Platform
Threat Update On the evening of November 13, 2021, the FBI and CISA responded to multiple reports regarding messages sent from the FBI’s email infrastructure, which falsely warn users about a cyber attack. Their brief statement noted that the law...
Cybersecurity Threat Advisory: Zero-Day Vulnerability Found in Palo Alto Security Appliances
Threat Update Researchers have discovered a zero-day vulnerability that can allow an attacker to launch Remote Code Execution attacks on a security appliance made by Palo Alto Networks. This discovery leaves 10,000 firewalls potentially vulnerable. Technical Detail & Additional Information...
Cybersecurity Threat Advisory: Ranzy Locker Ransomware Gaining Traction
Threat Update The FBI has warned that over 30 US-based companies have been hit by the Ranzy Locker ransomware by July this year. The alert, which was issued alongside CISA, notes that most of the victims were compromised by brute...
Cybersecurity Threat Advisory: New Malware Used to Deploy Qakbot and Cobalt Strike
Threat Update Threat actors have begun using a new malware loader named Squirrelwaffle to gain an initial foothold in target networks and drop malware, including Qakbot and Cobalt Strike, onto compromised systems and networks in recent campaigns. Technical Detail &...
Cybersecurity Threat Advisory: Google Chrome Releases Patches for Multiple Vulnerabilities
Threat Update Following the confirmation of four serious Chrome vulnerabilities this month, Google has revealed five new vulnerabilities with a rating of “High” as well as 11 other less severe flaws known to affect versions of Chrome prior to the...
Cybersecurity Threat Advisory: Apache Zero-Day Vulnerability Actively Exploited
Threat Update There are two vulnerabilities in Apache HTTP Web Server version 2.4.49 that are under active exploitation. The first vulnerability enables an attacker to perform path traversal, file disclosure, and remote code execution (RCE) abilities. The second allows the...
Cybersecurity Threat Advisory: Twitch.tv Hacked with 125GB of Data Dumped
Threat Update On Wednesday, October 6th, 2021, the streaming platform Twitch confirmed that it had been breached. The party responsible for this attack dumped 125 GB of data to the Internet on Wednesday. The dump contains highly sensitive information for...
Cybersecurity Threat Advisory: VMWare vCenter PoC Exploit Available
Threat Update Recently, VMWare, a global virtualization and cloud computing vendor, was informed of a critical vulnerability that affects certain versions of its vCenter service. Successful exploitation of this vulnerability could allow an attacker to upload arbitrary files and execute...
Cybersecurity Threat Update: Regarding the Recent Facebook BGP/DNS Outage
Threat Update On October 4, 2021, the global social network Facebook and its associated platforms faced a global outage that lasted approximately six hours. This outage not only impacted all Facebook users, but it also blocked internal communication between Facebook...
Cybersecurity Threat Advisory: Threat Actors Targeting VoIP Providers with DDoS Attacks
Threat Update In recent weeks, threat actors have been targeting voice over Internet Protocol (VoIP) providers with distributed denial of service (DDoS) attacks that have impacted the mission-critical communications, including 911 services, of numerous organizations. Bandwidth.com has become the latest...
