Monthly Archives: August 2020

Cisco warns of IOS XR zero-day vulnerability exploit in the wild (CVE-2020-3566)

• Post author:Frank Crast
• Post published:August 31, 2020
• Post category:Network Security / Security Updates & Patches / Vulnerabilities & Exploits

Cisco issued a security advisory warning of a new Cisco IOS XR software zero-day vulnerability CVE-2020-3566 under active exploit in the wild.

Continue Reading Cisco warns of IOS XR zero-day vulnerability exploit in the wild (CVE-2020-3566)

BeagleBoyz cybercriminals launch “FASTCash 2.0” to rob banks

• Post author:Frank Crast
• Post published:August 29, 2020
• Post category:Cybersecurity Articles / Cybersecurity Attacks / Malware / Network Security / Security Monitoring / System Hardening

North Korea's BeagleBoyz cybercriminals have launched an automated teller machine (ATM) cash-out scheme, known as FASTCash 2.0. Cyber experts from the U.S. government have detected the cyber activity over the past five years that led to nearly $2B loss to financial institutions around the world.

Continue Reading BeagleBoyz cybercriminals launch “FASTCash 2.0” to rob banks

Cisco fixes 11 High risk vulnerabilities in NX-OS Software and other network products

• Post author:Frank Crast
• Post published:August 27, 2020
• Post category:Network Security / Security Updates & Patches / Vulnerabilities & Exploits

Cisco has patched 11 High severity vulnerabilities in Cisco NX-OS Software, Nexus switches, Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Software.

Continue Reading Cisco fixes 11 High risk vulnerabilities in NX-OS Software and other network products

Mozilla releases Firefox 80, fixes for 3 High risk vulnerabilities

• Post author:Frank Crast
• Post published:August 26, 2020
• Post category:Security Updates & Patches / Vulnerabilities & Exploits

The Mozilla Foundation has released Firefox 80 that includes some minor feature improvements and security fixes for multiple vulnerabilities.

Continue Reading Mozilla releases Firefox 80, fixes for 3 High risk vulnerabilities

Google Chrome 85 offers new tab features to improve productivity

• Post author:Frank Crast
• Post published:August 26, 2020
• Post category:Security Updates & Patches / Vulnerabilities & Exploits

Google has released Chrome 85 and security updates for Windows, Mac and Linux. The latest version includes new browser tab features to improve productivity.

Continue Reading Google Chrome 85 offers new tab features to improve productivity

FritzFrog P2P botnet breaches SSH servers

• Post author:Frank Crast
• Post published:August 24, 2020
• Post category:Cybersecurity Attacks / Malware

Security researchers from Guardicore discovered a sophisticated peer-to-peer (P2P) botnet dubbed FritzFrog has been actively breaching SSH servers since January 2020.

Continue Reading FritzFrog P2P botnet breaches SSH servers

The 2020 CWE Top 25 Most Dangerous Software Weaknesses

• Post author:Frank Crast
• Post published:August 22, 2020
• Post category:Application Security / Cybersecurity Articles / Vulnerabilities & Exploits

The Homeland Security Systems Engineering and Development Institute (HSSEDI), has released the 2020 Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list.

Continue Reading The 2020 CWE Top 25 Most Dangerous Software Weaknesses

BIND fixes DoS-related vulnerabilities

• Post author:Frank Crast
• Post published:August 21, 2020
• Post category:Uncategorized

The Internet Systems Consortium (ISC) has released security updates that fix five vulnerabilities in multiple versions of ISC Berkeley Internet Name Domain (BIND) that could result in denial-of-service (DoS) condition.…

Continue Reading BIND fixes DoS-related vulnerabilities

Cisco patches Critical default credentials vulnerability (CVE-2020-3446) in network appliances

• Post author:Frank Crast
• Post published:August 20, 2020
• Post category:Security Updates & Patches / Vulnerabilities & Exploits

Cisco patched a Critical default credentials vulnerability CVE-2020-3446 in Cisco vWAAS for Cisco ENCS 5400-W Series and CSP 5000-W Series network appliances.

Continue Reading Cisco patches Critical default credentials vulnerability (CVE-2020-3446) in network appliances

Google releases Chrome security update (84.0.4147.135)

• Post author:Frank Crast
• Post published:August 20, 2020
• Post category:Security Updates & Patches / Vulnerabilities & Exploits

Google has released Chrome 84.0.4147.135 security update for Windows, Mac and Linux. An attacker could exploit these vulnerabilities to take control of impacted systems.

Continue Reading Google releases Chrome security update (84.0.4147.135)