Tag Archives: newsletter

BF-SIRT Newsletter 2017-32

The top stories from this week is that Carbon Black’s Cb Response is accused by DirectDefense to leak sensitive data, CB claim it’s a feature, and how Salesforce fires red team staffers who gave Defcon talk. You can also read … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-32

BF-SIRT Newsletter 2017-31

The top stories from this week is the new SMB flaw, SMBLoris, and that Troy Hunt Releases Password List. A security flaws has been found in 2G modems Used by BMW, Ford, Infiniti, and Nissan Cars, and Netflix Releases DoS … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-31

BF-SIRT Newsletter 2017-29

The top stories from this week is the Remote Code Execution In Source Games, and how Free Certs Come With a Cost. You can also read about how WSJ Parent Company Dow Jones Exposed Customer Data due to improperly configured … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-29

BF-SIRT Newsletter 2017-28

The top stories from this week is a Kerberos SNAME security feature bypass vulnerability (sound autoplays), and new LDAP & RDP relay vulnerabilities in NTLM. You can also read about how Magecart attackers monetize stolen payment card info, or how … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-28

BF-SIRT Newsletter 2017-27

The top stories from this week is that Ukraine Police Seize Servers, Blame Software Firm for ‘Petya’ and that Systemd Bug Lets Attackers Hack Linux Boxes via Malicious DNS Packets. You can also read about a Dark Web Site Creates … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-27

BF-SIRT Newsletter 2017-26

The top stories from this week is of course that the ransomware Petya adds worm capabilities and that Google researcher uncovers another RCE in Microsoft Malware Protection Engine. You can also read about how British parliamentary email accounts were compromised … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-26

BF-SIRT Newsletter 2017-25

The top stories from this week is that TrickBot Goes Nordic, Once in a While and South Korean web hosting company ransomed for 550 BTC. You can also read the Cisco 2017 Annual Cybersecurity Report and McAfee Labs Threat Report … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-25

BF-SIRT Newsletter 2017-24

The top stories from this week is how you now can subscribe to SS7 interception and tracking of mobile phones for $500 and Al-Jazeera reportedly hit by systematic hacking attempts. You can also read about ‘Crash Override’: The Malware That … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-24

BF-SIRT Newsletter 2017-23

The top stories from this week is how The Intercept outed the NSA contractor Reality Winner and a new PowerPoint Mouseover based downloader. You can also read about the journey to hijacking a country’s TLD and about Dvmap, the first … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-23

BF-SIRT Newsletter 2017-22

The top stories from this week is about the OneLogin breach which exposed the ability to decrypt data and a fileserver implant which replace documents on the fly with Trojanized versions without touching the files at rest. You can also … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-22