CIRT Team
in Security Advisories & Alerts
Multiple Vulnerabilities in F5 BIG-IP and BIG-IQ Products Could Allow for Arbitrary Code Execution
DESCRIPTION:Multiple vulnerabilities have been discovered in F5 products, the mostsevere of which could allow for remote code execution. * BIG-IP and BIG-IP Advanced WAF/ASM are a family of products coveringsoftware and hardware designed around application availability, accesscontrol, and security solutions.* BIG-IQ enables administrators to centrally manage BIG-IPinfrastructure across the IT...
Read more
in Security Advisories & Alerts
Multiple Vulnerabilities in ArubaNetworks Instant Access Point Could Allow for Arbitrary Code Execution
DESCRIPTION:Multiple vulnerabilities have been discovered in ArubaNetwork’s InstantAccess Point that could allow for arbitrary code execution. Aruba (aHewlett Packard Enterprise company) is the worldwide second-largestenterprise WLAN vendor. ArubaNetworks Instant Access Point is Wi-Fihardware which virtualizes Aruba Mobility Controller capabilities on802.11 access points (APs). Successful exploitation of thesevulnerabilities could allow an...
Read more
in Articles, Bangla Articles, News
বাংলাদেশ কম্পিউটার কাউন্সিলে সাইবার নিরাপত্তা সম্পর্কিত কর্মশালা
বাংলাদেশ কম্পিউটার কাউন্সিলে অনুষ্ঠিত হলো দিনব্যাপী সাইবার নিরাপত্তা সম্পর্কিত অবহিতকরণ কর্মশালা। উক্ত কর্মশালায় মিলিটারি ইনস্টিটিউট অফ সায়েন্স অ্যান্ড টেকনোলজি, সংক্ষেপে এমআইএসটিতে অধ্যয়নরত সশস্ত্রবাহিনীর শিক্ষার্থী ও শিক্ষকবৃন্দ অংশগ্রহণ করেন। বুধবার সকাল ১০টা থেকে বিকাল ৫টা পর্যন্ত বাংলাদেশ কম্পিউটার কাউন্সিল এর সভাকক্ষে এ কর্মশালা অনুষ্ঠিত হয়। কর্মশালায় প্রধান অতিথি হিসেবে উপস্থিত ছিলেন...
Read more
in Security Advisories & Alerts
HIGH ALERT – ACT QUICKLY: For organisations using Microsoft Exchange
The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has identified extensive targeting, and has confirmed compromises, of Australian organisations with vulnerable Microsoft Exchange deployments. The ACSC is assisting affected organisations with their incident response and remediation. The ACSC has identified a large number of Australian organisations are yet to...
Read more
in Security Advisories & Alerts
9 Android Apps On Google Play Caught Distributing AlienBot Banker and MRAT Malware [thehackernews]
Cybersecurity researchers have discovered a new malware dropper contained in as many as 9 Android apps distributed via Google Play Store that deploys a second stage malware capable of gaining intrusive access to the financial accounts of victims as well as full control of their devices. “This dropper, dubbed Clast82,...
Read more
in Security Advisories & Alerts
Malware Can Exploit New Flaw in Intel CPUs to Launch Side-Channel Attacks [thehackernews]
A new research has yielded yet another means to pilfer sensitive data by exploiting what’s the first “on-chip, cross-core” side-channel in Intel Coffee Lake and Skylake processors. Published by a group of academics from the University of Illinois at Urbana-Champaign, the findings are expected to be presented at the USENIX Security Symposium...
Read more
in Security Advisories & Alerts
Apple Issues Patch for Remote Hacking Bug Affecting Billions of its Devices [thehackernews]
Apple has released out-of-band patches for iOS, macOS, watchOS, and Safari web browser to address a security flaw that could allow attackers to run arbitrary code on devices via malicious web content. Tracked as CVE-2021-1844, the vulnerability was discovered and reported to the company by Clément Lecigne of Google’s Threat Analysis...
Read more
