by CIRT Team
Drupal Releases Security Updates
Description: Drupal has released security updates to address multiple vulnerabilities in Drupal Core. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://www.drupal.org/sa-core-2019-005 https://www.drupal.org/sa-core-2019-006
by taranis
Cisco IOS XE Software Local Command Injection Vulnerability
Advisory ID: BGD-2019-0013 Version: 1.00 Probability: medium CVE ID: CVE-2019-1745 Damage: medium Publication date: 2019-04-16 Description: A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with elevated privileges. The vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and...
Read More
by taranis
Cisco Small Business RV320 and RV325 Routers CVE-2019-1828 Weak Encryption Security Weakness
Advisory ID: BGD-2019-0012 Version: 1.00 Probability: medium CVE ID: CVE-2019-1828 Damage: medium Publication date: 2019-04-16 Description: A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to access administrative credentials. The vulnerability exists because affected devices use weak encryption algorithms for user credentials. An attacker could exploit this vulnerability by...
Read More
by CIRT Team
Vulnerability in Multiple VPN Applications
Description: The CERT Coordination Center (CERT/CC) has released information on a vulnerability affecting multiple Virtual Private Network (VPN) applications. An attacker could exploit this vulnerability to take control of an affected system. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://www.kb.cert.org/vuls/id/192371/
by CIRT Team
VMware Releases Security Updates
Description: VMware has released security updates to address vulnerabilities in ESXi, Workstation, and Fusion Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://www.vmware.com/security/advisories/VMSA-2019-0006.html
by CIRT Team
Apache Releases Security Updates for Apache Tomcat
Apache Releases Security Updates for Apache Tomcat Description: The Apache Software Foundation has released Apache Tomcat versions 7.0.94 and 8.5.40 to address a vulnerability. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: http://mail-archives.us.apache.org/mod_mbox/www-announce/201904.mbox/%3C13d878ec-5d49-c348-48d4-25a6c81b9605%40apache.org%3E
by CIRT Team
Microsoft Releases April 2019 Security Updates
Description: Microsoft has released updates to address multiple vulnerabilities in Microsoft software. The April security release consists of security updates for the following software: Adobe Flash Player Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps ChakraCore ASP.NET Microsoft Exchange Server Team Foundation Server Azure DevOps Server Open Enclave SDK Windows Admin Center Impact: A remote attacker could exploit...
Read More
by CIRT Team
RobbinHood Ransomware Claims It’s Protecting Your Privacy [bleepingcomputer]
A new ransomware is in play called RobbinHood that is targeting entire networks and then encrypting all computers that they can gain access to. They then request a certain amount of bitcoins to decrypt a single computer or a larger amount to decrypt the entire network. Not much is currently known about this ransomware and a sample for RobbinHood has not currently been found. We ...
Read More
by CIRT Team
This Ransomware Improves Your PC’s Performance. Initially. [fossbytes]
We recently told you about the highly dangerous Lockergoga Virus, which caused Havoc in the industrial complexes. Well, there is a new malware called vxCrypter ransomware in the digital space and it will encrypt your files along and ‘improve’ your PC’s performance. Vccrypter is based on an unfinished, old ransomware called vxLock that utilized Advanced Encryption Standard (AES) and Rivest-Shamir-Adleman or RSA algorithm to encrypt files. How does VxCrypter Ransomware work? The...
Read More
by CIRT Team
Thousands of Unprotected Kibana Instances Exposing Elasticsearch Databases [thehackernews]
In today’s world, data plays a crucial role in the success of any organization, but if left unprotected, it could be a cybercriminal’s dream come true. Poorly protected MongoDB, CouchDB, and Elasticsearch databases recently got a lot more attention from cybersecurity firms and media lately. More than half of the known cases of massive data breaches over the past year originated from unsecured database servers...
Read More
