LINK Apple has released numerous security updates for their products.
Posts by John:
LINK The products impacted are VMware vCenter Server (vCenter Server) and VMware Cloud Foundation (Cloud Foundation), so update if you have them.
LINK Time to examine if you are affected and update the devices.
LINK OMIGOD (CVE-2021-38647) is a vulnerability in the Azure deployed virtual machines running Linux. Make sure to update if you have Azure Linux machines. Many of the scans are coming on ports 5986 and 1270
LINK A new RCE (CVE-2021-33035) in Apache OpenOffice was found. As of writing this there was no fix but one was coming.
TTEC (technology company) – ransomware Epik (Domain Registrar) – unspecified attack Republican Governors Association Email server – exchange breach EventBuilder (Event Management) – user information exposed in Azure NEW Cooperative (US Farmers Coop) – Blackmatter ransomware Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously […]
LINK To make it easy, I pulled it and created a simple txt list you can use. These are the some of the initial access methods. Pulse Secure VPNCVE-2021-22893CVE-2020-8260CVE-2020-8243CVE-2019-11539CVE-2019-11510 CitrixCVE-2020-8196CVE-2020-8195CVE-2019-19781CVE-2019-11634 Microsoft ExchangeCVE-2021-34523CVE-2021-34473CVE-2021-31207CVE-2021-26855 FortinetCVE-2020-12812CVE-2019-5591CVE-2018-13379 SonicWallCVE-2021-20016CVE-2020-5135CVE-2019-7481 F5CVE-2021-22986CVE-2020-5902 Palo AltoCVE-2020-2021CVE-2019-1579 QNAPCVE-2021-28799CVE-2020-36198 SophosCVE-2020-12271 SharePointCVE-2019-0604 Microsoft WindowsCVE-2019-0708CVE-2020-1472CVE-2021-31166CVE-2021-36942 Microsoft OfficeCVE-2017-0199CVE-2017-11882CVE-2021-40444 vCenterCVE-2021-21985 AccellionCVE-2021-27101CVE-2021-27104CVE-2021-27102CVE-2021-27103 FileZenCVE-2021-20655 AtlassianCVE-2021-26084 Zoho CorpCVE-2021-40539 Microsoft AzureCVE-2021-38647
Numerous French Hospital COVID-19 test data – (personal details were exfiltrated) TTEC (customer support call company) – ransomware Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be […]
LINK The ADSelfService Plus package was found to have a ciritcal RCE vulnerability on the 6th and is now being utilized by attackers. If you have ADSelfService Plus, patch immediately