2018 - Page 2 of 30

Microsoft December 2018 patch updates

Leave a Comment / Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / December 11, 2018 / .NET, Azure, ChakraCore, CVE-2018-8611, CVE-2018-8626, Edge, Exchange, Microsoft, Office, Security update, Vulnerabilities, Windows

Microsoft issued the December 2018 Security Updates that include 39 unique vulnerability fixes, 9 of them rated critical.

Microsoft December 2018 patch updates Read More »

Linux Rabbit and Rabbot Malware threats

Cybersecurity Attacks, Malware / Frank Crast / December 10, 2018 / C2, Command and Control, Cryptocurrency, CVE-2015-2051, CVE-2016-0792, CVE-2017-6884, CVE-2018-1149, CVE-2018-9866, IOT, Linux, Linux Rabbit, malware, Monero, Rabbot, SSH

Security researchers from Anomali Labs have discovered a new malware dubbed “Linux Rabbit” that has targeted Linux servers and Internet-of-Things (IoT) devices in Russia, South Korea, the UK, and the US.

Linux Rabbit and Rabbot Malware threats Read More »

Apple security updates for iOS 12.1.1 and other products

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / December 6, 2018 / Apple, CVE-2018-4435, CVE-2018-4447, CVE-2018-4461, iCloud, iOS, iOS 12.1.1, iTunes, macOS, macOS Mojave 10.14.2, Safari, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra, tvOS

Apple released security updates that address vulnerabilities in multiple products, to include iOS, macOS, Safari, iCloud, iTunes and tvOS.

Apple security updates for iOS 12.1.1 and other products Read More »

Google Chrome security updates

Leave a Comment / Security Updates & Patches / Frank Crast / December 5, 2018 / Android, Chrome 71, Google

Google has released Chrome 71 (version 71.0.3578.80) for Windows, Mac and Linux. The latest update includes 43 security fixes, 13 of them rated High severity and discovered by external researchers.

Google Chrome security updates Read More »

SamSam ransomware threat

Cybersecurity Attacks, Malware / Frank Crast / December 4, 2018 / DHS, FBI, Ransomware, RDP, SamSam, Vulnerabilities, Windows

The Department of Homeland Security and the Federal Bureau of Investigation issued a security alert warning bad actors are using SamSam ransomware to target industries across the United States and worldwide.

SamSam ransomware threat Read More »

UPnProxy opens up networks to Eternal family of exploits

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / December 3, 2018 / CVE-2017-0144, CVE-2017-7494, Eternal Silence, EternalBlue, EternalRed, malware, MS17-010, NSA, SambaCry, UPnP, UPnProxy, Vulnerabilities

Earlier this year, researchers from Akamai discovered attackers were abusing Universal Plug and Play (UPnP) vulnerabilities to conceal traffic, thus creating a malicious proxy system dubbed “UPnProxy.”

UPnProxy opens up networks to Eternal family of exploits Read More »

Marriott’s Starwood hotels data breach

Data Breach / Frank Crast / November 30, 2018 / Data Breach, Hotels, Marriott, SPG, Starwood

Marriott Hotels issued a statement that a breach at its subsidiary Starwood Hotels reservation system exposed personal data on nearly 500 million customers.

Marriott’s Starwood hotels data breach Read More »

DNSpionage campaign threat targets Middle East

Leave a Comment / Cryptography, Cybersecurity Attacks, Network Security / Frank Crast / November 29, 2018 / Cisco, Cyberattack, Cyberesionage, DNS, DNSpionage, Lebanon, Middle East, Talos, UAE

Cisco’s Talos security group has discovered a new cyber campaign dubbed “DNSpionage” that targets organizations in the Middle East. The cyber attacks have impacted .gov domains in Lebanon and the United Arab Emirates (UAE), as well as a Lebanese airline company. “This particular campaign utilizes two fake, malicious websites containing job postings that are used to compromise targets via

DNSpionage campaign threat targets Middle East Read More »