Author Archives: CIRT Team



CIRT Team

in News Clipping

memcached on port 11211 UDP & TCP being exploited [source: senki]

UPDATE: As of 2018-03-02 ( Afternoon Update), more attack using the memcached reflection vector have been unleashed on the Internet. As shared by  Akamai Technologies “memcached-fueled 1.3 Tbps Attacks,” the application factors are “Internet Impacting.” Mitigation and Remediation Efforts are reducing the number of potential memcached reflectors. Please keep up the good work. Operators...

Read more

0
06 Mar 2018
in News Clipping

Talos experts shared details of a RCE flaw in Adobe Acrobat Reader DC [source: securityaffairs]

Security experts at Cisco Talos disclosed details of a remote code execution flaw that affects Adobe Acrobat Reader DC versions 2018.009.20050 and 2017.011.30070 and earlier. Security experts at Cisco Talos shared details of a remote code execution vulnerability tracked as CVE-2018-4901, that affects Adobe Acrobat Reader DC. A remote attacker can exploit the...

Read more

0
01 Mar 2018
in News Clipping

Free Decrypter Available for GandCrab Ransomware Victims [source: bleepingcomputer]

Bitdefender has released a free decrypter that helps victims of GandCrab ransomware infections recover files without paying the ransom. The decrypter is available for download via the NoMoreRansom project, of which Bitdefender is a member of. Romanian Police and Romania’s DIICOT (Directorate for Investigating Organized Crime and Terrorism) announced the decrypter’s launch in statements published on...

Read more

0
01 Mar 2018
in News Clipping

SAML Vulnerability Lets Attackers Log in as Other Users [source: bleepingcomputer]

Security researchers from Duo Labs and the US Computer Emergency Response Team Coordination Center (CERT/CC) will release security advisories today detailing a new SAML vulnerability that allows malicious attackers to authenticate as legitimate users without knowledge of the victim’s password. The flaw affects SAML (Security Assertion Markup Language), an XML-based markup language...

Read more

0
01 Mar 2018
in News Clipping

Oracle Server Vulnerability Exploited to Deliver Double Monero Miner Payloads[trendmicro]

The sudden rise of cryptocurrency triggered a shift in the target landscape. Cybercriminals started adapting and using their resources to try acquiring cryptocurrencies, whether through pursuing repositories like Bitcoin wallets or by compromising networks and devices to mine the currency. This isn’t completely new — ransomware authors have been using bitcoin as their preferred currency...

Read more

0
01 Mar 2018
Page 10 of 69« First...89101112...203040...Last »