CyberSecure Specialist

28 Jul

CISA Releases Malware Analysis Reports on Barracuda Backdoors

CISA has published three malware analysis reports on malware variants associated with exploitation of CVE-2023-2868. CVE-2023-2868 is a remote command injection vulnerability affecting Barracuda Email Security Gateway (ESG) Appliance, versions 5.1.3.001-9.2.0.006. It was exploited as a zero day as early as October 2022 to gain access to ESG appliances. According to industry reporting, the actors exploited the vulnerability to gain initial access to victim systems and then implanted backdoors to establish and maintain persistence. CISA…

27 Jul

Gathering dust and data: How robotic vacuums can spy on you.

Information

Mitigate the risk of data leaks with a careful review of the product and the proper settings.

27 Jul

S3 Ep145: Bugs With Impressive Names!

Information

by Paul Ducklin ONE WEEK, TWO BWAINS Apple patches two zero-days, one for a second time. How a 30-year-old cryptosystem got cracked. All your secret are belong to Zenbleed. Remembering those dodgy PC/Mac ads. No audio player below? Listen directly on Soundcloud. With Doug Aamoth and Paul Ducklin. Intro and outro music by Edith Mudge. You can listen to us on Soundcloud, Apple Podcasts, Google Podcasts, Spotify and anywhere that good podcasts are found. Or…

27 Jul

US Senator Wyden Accuses Microsoft of ‘Cybersecurity Negligence’

Information, News

Oregon senator Ron Wyden wants the U.S. government to hold Microsoft responsible for what he describes as “negligent cybersecurity practices” that enabled “a successful Chinese espionage campaign against the United States government.” In a strongly worded letter to Attorney General Merrick Garland and the heads of CISA and the FTC, Wyden said the software giant “bears significant responsibility” for the M365 cloud hack that started with the theft of a Microsoft encryption key. “Since the…

27 Jul

CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse

Attacks, Insights, Malware

The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA) are releasing a joint Cybersecurity Advisory (CSA), Preventing Web Application Access Control Abuse, to warn vendors, designers, developers, and end-user organizations of web applications about insecure direct object reference (IDOR) vulnerabilities. These vulnerabilities are frequently exploited by malicious actors in data breach incidents and have resulted in the compromise of personal, financial, and…

26 Jul

Dear all! What are some common subject lines in phishing emails?

Information

Scammers exploit current ongoing events, account notifications, corporate communication, and a sense of urgency.

26 Jul

Zenbleed: How the quest for CPU performance could put your passwords at risk

Information

by Paul Ducklin Remember Heartbleed? That was the bug, back in 2014, that introduced the suffix -bleed for vulnerabilities that leak data in a haphazard way that neither the attacker nor the victim can reliably control. In other words, a crook can’t use a bleed-style bug for a precision attack, such as “Find the shadow password file in the /etc directory and upload it to me,” or “Search backwards in memory until the first run…

26 Jul

Russia Sends Cybersecurity CEO to Jail for 14 Years

Information, Insights

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia’s largest cybersecurity firms. Sachkov, 37, has been detained for nearly two years under charges that the Kremlin has kept classified and hidden from public view, and he joins a growing roster of former Russian cybercrime fighters who are now serving hard time for farcical treason convictions. Ilya Sachkov. Image: Group-IB.com.…

26 Jul

Ex-NSA Official Harry Coker Tapped for National Cyber Director Job

Information, News

Former Navy commander and senior official in the NSA and CIA Harry Coker has been formally tapped to replace the retired Chris Inglis as the U.S. government’s National Cyber Director. Coker’s nomination, announced by the Biden administration on Wednesday, puts him in line to lead the implementation of the government’s newly formed national cybersecurity strategy and manage the tricky relationship between the federal government and big-tech vendors struggling to cope with nonstop malicious hacker attacks.…

26 Jul

CISA Releases Analysis of FY22 Risk and Vulnerability Assessments

Attacks, Insights, Malware

CISA has released an analysis and infographic detailing the findings from the 121 Risk and Vulnerability Assessments (RVAs) conducted across multiple critical infrastructure sectors in fiscal year 2022 (FY22). The analysis details a sample attack path including tactics and steps a cyber threat actor could follow to compromise an organization with weaknesses representative of those CISA observed in FY22 RVAs. The infographic highlights the most successful techniques for each tactic that RVAs documented. Both the…

CISA Releases Malware Analysis Reports on Barracuda Backdoors

Gathering dust and data: How robotic vacuums can spy on you.

S3 Ep145: Bugs With Impressive Names!

US Senator Wyden Accuses Microsoft of ‘Cybersecurity Negligence’

CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse

Dear all! What are some common subject lines in phishing emails?

Zenbleed: How the quest for CPU performance could put your passwords at risk

Russia Sends Cybersecurity CEO to Jail for 14 Years

Ex-NSA Official Harry Coker Tapped for National Cyber Director Job

CISA Releases Analysis of FY22 Risk and Vulnerability Assessments

Search

The 6 Stages of a Vulnerability Management Process

Get Cybersecurity Alerts

Read More

Categories

Site Navigation

Resources