News/Intelligence/IOCs Stories New Meta information stealer distributed in malspam campaign – LINK EU officials were targeted with Israeli surveillance software – LINK FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin – LINK Enemybot: a new Mirai, Gafgyt hybrid botnet joins the scene – LINK Clueless hackers spent months inside a network and nobody noticed. […]
Tag: cisa
Weekday Digest – 4/7/2022 (Thursday)
Information from Wednesday afternoon to Thursday morning. News/Intelligence/IOCs Stories CISA Adds Three Known Exploited Vulnerabilities to Catalog – LINK Nearly Two-Thirds of Ransomware Victims Paid Ransoms Last Year, Finds “2022 Cyberthreat Defense Report” – LINK WatchGuard waited 11 months to explicitly disclose critical flaw exploited by Sandworm – LINK New FFDroider malware steals Facebook, Instagram, […]
Weekday Digest – 4/5/2022 (Tuesday)
Information from Monday afternoon to Tuesday morning. News/Intelligence/IOCs Stories CISA Adds Four Known Exploited Vulnerabilities to Catalog – LINK Zyxel patches critical vulnerability that can allow Firewall and VPN hijacks – LINK Cyclops Blink Malware Targeting WatchGuard Firewalls – LINK Lapsus$ Threat Actor Demonstrates Access to Backend Okta Tooling – LINK Ransomware Will Grind You […]
Updates as of 4/1/2022
News/Intelligence/IOCs Stories New AcidRain data wiper malware targets modems and routers – LINK Chinese hacking group uses new ‘Fire Chili’ Windows rootkit – LINK Researchers used a decommissioned satellite to broadcast hacker TV – LINK Belarusian ‘Ghostwriter’ Actor Picks Up BitB for Ukraine-Related Attacks – LINK The Windows Update policies you should set and why […]
Updates as of 3/31/2022
I have added a new section that is called Government/Regulation/Russia/Ukraine War related stories. These will be more those relating to the legal/law side of government stories, as well as those specifically around the Russian/Ukrainian War. News/Intelligence/IOCs Stories FBI Releases PIN on Phishing Campaign against U.S. Election Officials – LINK VMware Horizon platform pummeled by Log4j-fueled […]
Updates as of 3/28/2022
NOTE: I am thinking of changing the design a bit to instead of having one post per item, to one post per day with everything. Here is a first try CISA – Adds 32 Known Exploited Vulnerabilities to Catalog – LINK – CSV Download Link CISA – Vulnerability Summary for the Week of March 21, […]
Russian State-Sponsored Cyber Actors Gain Network Access by Exploiting Default Multifactor Authentication Protocols and “PrintNightmare” Vulnerability
LINK
CISA Adds 15 Known Exploited Vulnerability to Catalog
CVE ID Vulnerability Name Due Date CVE-2020-5135 SonicWall SonicOS Buffer Overflow Vulnerability 4/5/2022 CVE-2019-1405 Microsoft Windows UPnP Service Privilege Escalation Vulnerability 4/5/2022 CVE-2019-1322 Microsoft Windows Privilege Escalation Vulnerability 4/5/2022 CVE-2019-1315 Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability 4/5/2022 CVE-2019-1253 Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability 4/5/2022 CVE-2019-1129 Microsoft Windows AppXSVC Privilege Escalation […]
Vulnerability Summary for the Week of March 7, 2022
LINK A new update from CISA
New/Updated CISA Conti Ransomware Details and IOCs
LINK