This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). The use of the Zoom video conference application has exploded in popularity amid the ongoing coronavirus pandemic but this has lead to the importance of scrutiny from a security and privacy perspective which as […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Criminals continue to use the covid-19 pandemic for personal gain and according to Barracuda networks the amount of phishing emails have spikes by over 650% since the end of February. But even as the […]
Published: 2020-03-23 MITRE CVE-2020- (TBD) Microsoft is warning about a vulnerability they have detected used in targeted attacks and that there is no patch for yet. No patch and detected in use, a place for the scary word “zero-day”, but this is not a tabloid. “Two remote code execution vulnerabilities exist in Microsoft Windows when […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Helpdesksecurity writes “A time of chaos is a time for opportunity for unscrupulous individuals and groups, and COVID-19 is seemingly an unmissable boon for cyber crooks. We’ve already covered a variety of COVID-19-themed scams, […]
Our customers’ business continuity is of paramount importance for Basefarm. We are fully aware that several of our clients provide services that are absolutely critical for our society. Basefarm is following the ongoing outbreak closely and is constantly considering the implications for secure operations for us and our customers. There are several ways that this […]
Published: 2020-03-10 MITRE CVE-2020-0852 “A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions […]
Published: 2020-03-10 MITRE CVE-2020-0796 As of writing, Microsoft has not released any official information, but FortiGuard writes that there exists a “(…) Buffer Overflow Vulnerability in Microsoft SMB Servers. The vulnerability is due to an error when the vulnerable software handles a maliciously crafted compressed data packet. A remote, unauthenticated attacker can exploit this to […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). “Qihoo 360, one of the most prominent cybersecurity firms, today published a new report accusing the U.S. Central Intelligence Agency (CIA) to be behind an 11-year-long hacking campaign against several Chinese industries and government […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). “Often, hackers are portrayed as “technical sorcerers” while defenders are “hapless techies focused on zero-day vulnerabilities and only the most advanced threat vectors,” but in reality, that’s not true. Cybercriminals are not always sophisticated, […]
Published: 02/11/2020 | Last Updated : 02/11/2020 MITRE CVE-2020-0688 “A remote code execution vulnerability exists in Microsoft Exchange Server when the server fails to properly create unique keys at install time. Knowledge of a the validation key allows an authenticated user with a mailbox to pass arbitrary objects to be deserialized by the web application, […]
Photo by Curtis Thornton on Unsplash
Photo by Grant Ritchie on Unsplash
Photo by camilo jimenez on Unsplash
Photo by Balkouras Nicos on Unsplash
Photo by Ivan Vranić on Unsplash
Photo by Sergiu Nista on Unsplash
Photo by Chad Peltola on Unsplash