Está aqui

Infosec News 20210419

Publicado: Seg, 19/04/2021 - 10:13

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

6 out of 11 EU agencies running Solarwinds Orion software were hacked

"SolarWinds supply chain attack also impacted six European Union institutions, European Commissioner for Budget and Administration confirmed."

Link

TLP¹ : Green

How the Kremlin Provides a Safe Harbor for Ransomware

"A global epidemic of digital extortion known as ransomware is crippling local governments, hospitals, school districts and businesses by scrambling their data files until they pay up. Law enforcement has been largely powerless to stop it."

Link

TLP¹ : Green

A member of the FIN7 group was sentenced to 10 years in prison

"Fedir Hladyr (35), a Ukrainian national was sentenced today to 10 years in prison for his role in the financially motivated group FIN7, aka Carbanak."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

Cyberattack on UK university knocks out online learning, Teams and Zoom

"All live online teaching has been cancelled on Thursday and Friday."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities

"The National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) have jointly released a Cybersecurity Advisory called Russian SVR Targets U.S. and Allied Networks, to expose ongoing Russian Foreign Intelligence Service (SVR) exploitation of five publicly known vulnerabilities."

Link

TLP¹ : Green

Vulnerabilities in OpENer Stack Expose Industrial Devices to Attacks

"Multiple vulnerabilities in the OpENer stack could be exploited in attacks aimed at supervisory control and data acquisition (SCADA) and other industrial systems that use OpENer."

Link

TLP¹ : Green

Critical Vulnerability Can Allow Attackers to Hijack or Disrupt Juniper Devices

"A critical vulnerability patched recently by networking and cybersecurity solutions provider Juniper Networks could allow an attacker to remotely hijack or disrupt affected devices."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

Strategically Managing Your Human Risk – Leverage the Security Awareness Maturity Model

"Establish a strategic roadmap to both plan and communicate the impact of a security awareness program."

Link

TLP¹ : Green

Improper cloud IAM leaving organizations at risk

"There is an industry-wide cloud permissions gap crisis, leaving countless organizations at risk due to improper identity and access management (IAM), a CloudKnox Security report reveals."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

Reverse-engineering tcpip.sys: mechanics of a packet of the death (CVE-2021-24086)

"Since the beginning of my journey in computer security I have always been amazed and fascinated by true remote vulnerabilities. By true remotes, I mean bugs that are triggerable remotely without any user interaction. Not even a single click. As a result I am always on the lookout for such vulnerabilities."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

Red:Not for disclosure, restricted to participants only.
Amber: Limited disclosure, restricted to participants organizations.
Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp

Infosec News

Análise / Investigações

Campanha Social Engineering

Analise ao Emotet

Campanha Smishing CTT

Campanha de Phishing BBVA

Campanha de phishing/ malware Millennium BCP

Newsletters

Para subscrever ou anular a subscrição da nossa newsletter InfoSec, seleccione a opção e preencha os campos abaixo.

CSIRT.MAI

Infosec News 20210419

Top News

Major BGP leak disrupts thousands of networks globally

Nitroransomware demands gift codes as ransom payments

Growing reliance on third-party suppliers signals increasing security risks

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

6 out of 11 EU agencies running Solarwinds Orion software were hacked

How the Kremlin Provides a Safe Harbor for Ransomware

A member of the FIN7 group was sentenced to 10 years in prison

Breaches: Data Breaches and Hacks

Cyberattack on UK university knocks out online learning, Teams and Zoom

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities

Vulnerabilities in OpENer Stack Expose Industrial Devices to Attacks

Critical Vulnerability Can Allow Attackers to Hijack or Disrupt Juniper Devices

Incident Response: Infrastructure, Training, SIEM and Incident Handling

Strategically Managing Your Human Risk – Leverage the Security Awareness Maturity Model

Improper cloud IAM leaving organizations at risk

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

Reverse-engineering tcpip.sys: mechanics of a packet of the death (CVE-2021-24086)