BF-SIRT Newsletter 2017-29

The top stories from this week is the Remote Code Execution In Source Games, and how Free Certs Come With a Cost. You can also read about how WSJ Parent Company Dow Jones Exposed Customer Data due to improperly configured … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Leave a comment

BF-SIRT Newsletter 2017-28

The top stories from this week is a Kerberos SNAME security feature bypass vulnerability (sound autoplays), and new LDAP & RDP relay vulnerabilities in NTLM. You can also read about how Magecart attackers monetize stolen payment card info, or how … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-28

BF-SIRT Newsletter 2017-27

The top stories from this week is that Ukraine Police Seize Servers, Blame Software Firm for ‘Petya’ and that Systemd Bug Lets Attackers Hack Linux Boxes via Malicious DNS Packets. You can also read about a Dark Web Site Creates … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-27

BF-SIRT Newsletter 2017-26

The top stories from this week is of course that the ransomware Petya adds worm capabilities and that Google researcher uncovers another RCE in Microsoft Malware Protection Engine. You can also read about how British parliamentary email accounts were compromised … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-26

BF-SIRT Newsletter 2017-25

The top stories from this week is that TrickBot Goes Nordic, Once in a While and South Korean web hosting company ransomed for 550 BTC. You can also read the Cisco 2017 Annual Cybersecurity Report and McAfee Labs Threat Report … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-25

BF-SIRT Newsletter 2017-24

The top stories from this week is how you now can subscribe to SS7 interception and tracking of mobile phones for $500 and Al-Jazeera reportedly hit by systematic hacking attempts. You can also read about ‘Crash Override’: The Malware That … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-24

BF-SIRT Newsletter 2017-23

The top stories from this week is how The Intercept outed the NSA contractor Reality Winner and a new PowerPoint Mouseover based downloader. You can also read about the journey to hijacking a country’s TLD and about Dvmap, the first … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-23

BF-SIRT Newsletter 2017-22

The top stories from this week is about the OneLogin breach which exposed the ability to decrypt data and a fileserver implant which replace documents on the fly with Trojanized versions without touching the files at rest. You can also … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-22

BF-SIRT Newsletter 2017-21

The top stories from this week is about a Samba Remote Code Execution Vulnerability and how Multiple Video Players are Vulnerable to Code Execution via Subtitle Files. You can also read about a NTFS bug that lets anyone hang or … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-21

BF-SIRT Newsletter 2017-20

The top stories from this week is of course about WannaCry and WannaCry 2.0. You can also read about how a Google researcher finds link between WannaCry attacks and North Korea, and that WikiLeaks reveals “AfterMidnight” & “Assassin” CIA Windows … Continue reading

Posted in Basefarm SIRT, IT security, Uncategorized | Tagged , | Comments Off on BF-SIRT Newsletter 2017-20