DNS Archives - Page 2 of 3

Microsoft July 2020 Security Updates and patch for ‘Wormable’ RCE Vulnerability in Window DNS Server

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 14, 2020 / Azure, CVE-2020-1350, DNS, Edge, OneDrive, Skype, Visual Studio, Windows, Windows Defender

Microsoft has released July 2020 Security updates, that includes an emergency patch for ‘a Wormable’ RCE Vulnerability CVE-2020-1350 dubbed “SIGRed” in Window DNS Server.

Microsoft July 2020 Security Updates and patch for ‘Wormable’ RCE Vulnerability in Window DNS Server Read More »

F5 patches Critical RCE vulnerability (CVE-2020-5902) in BIG-IP configuration utility

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 4, 2020 / AAM, AFM, Analytics, APM, ASM, BIG-IP, CVE-2020-5902, DNS, F5, FPS, GTM, Link Controller, LTM, PEM, RCE, TMUI

F5 has patched a Critical remote code execution (RCE) vulnerability (CVE-2020-5902) in the Configuration utility of BIG-IP. Researchers further discovered 8,000 devices were vulnerable on the internet and could result in full system compromise.

F5 patches Critical RCE vulnerability (CVE-2020-5902) in BIG-IP configuration utility Read More »

BIND security updates fix two vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / June 18, 2020 / BIND, CVE-2020-8618, CVE-2020-8619, DNS, DOS, Networking

The Internet Systems Consortium (ISC) has released security updates that fix two vulnerabilities in multiple versions of ISC Berkeley Internet Name Domain (BIND).

BIND security updates fix two vulnerabilities Read More »

BIND and Microsoft DNS security updates

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / May 21, 2020 / BIND, CVE-2020-8616, CVE-2020-8617, DNS, ISC, Microsoft

The Internet Systems Consortium (ISC) has released two security updates that fix vulnerabilities on multiple versions of BIND. In addition, Microsoft also issued a new DNS security advisory and workaround. The flaws could allow a remote attacker to exploit and cause a denial of service condition.

BIND and Microsoft DNS security updates Read More »

BIND security update

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / November 22, 2019 / BIND, CVE-2019-6477, DNS, DOS, ISC

The Internet Systems Consortium (ISC) has released a security update that fixes a vulnerability in multiple versions of ISC Berkeley Internet Name Domain (BIND).

BIND security update Read More »

New DNS hijacking campaign

Cybersecurity Attacks, Phishing / Frank Crast / July 15, 2019 / DNS, NCSC

UK’s National Cyber Security Centre (NCSC) is warning of an ongoing DNS hijacking campaign.

New DNS hijacking campaign Read More »

Samba patches two vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / June 19, 2019 / DNS, Messaging, Samba

Samba has released fixes for two security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.

Samba patches two vulnerabilities Read More »

BIND security updates

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 25, 2019 / BIND, CVE-2018-5743, DNS, ISC, TCP

The Internet Systems Consortium (ISC) has released security updates to fix vulnerabilities in versions of ISC Berkeley Internet Name Domain (BIND).

BIND security updates Read More »

DNSpionage campaign delivers Karkoff malware

Cybersecurity Attacks, Malware / Frank Crast / April 24, 2019 / DNS, DNSpionage

Threat actors behind a cyber attack campaign DNSpionage have been changing their tactics by delivering a new malware dubbed “Karkoff” in an effort to avoid detection.

DNSpionage campaign delivers Karkoff malware Read More »

Cisco patches Critical Vulnerability, warns of known public exploits

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 19, 2019 / Cisco, DNS, Network, Sea Turtle, WiFi, Wireless LAN

Cisco released security updates to patch critical vulnerabilities in multiple Cisco IOS products as well as high severity bugs in Cisco Wireless LAN, IOS, and other products. Two advisories have been updated with known public vulnerability exploits as recently evealed in Sea Turtle DNS hijacking campaign.

Cisco patches Critical Vulnerability, warns of known public exploits Read More »