News/Intelligence/IOCs Stories New Meta information stealer distributed in malspam campaign – LINK EU officials were targeted with Israeli surveillance software – LINK FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin – LINK Enemybot: a new Mirai, Gafgyt hybrid botnet joins the scene – LINK Clueless hackers spent months inside a network and nobody noticed. […]
Information from Monday afternoon to Tuesday morning. News/Intelligence/IOCs Stories CISA Adds Four Known Exploited Vulnerabilities to Catalog – LINK Zyxel patches critical vulnerability that can allow Firewall and VPN hijacks – LINK Cyclops Blink Malware Targeting WatchGuard Firewalls – LINK Lapsus$ Threat Actor Demonstrates Access to Backend Okta Tooling – LINK Ransomware Will Grind You […]
News/Intelligence/IOCs Stories New AcidRain data wiper malware targets modems and routers – LINK Chinese hacking group uses new ‘Fire Chili’ Windows rootkit – LINK Researchers used a decommissioned satellite to broadcast hacker TV – LINK Belarusian ‘Ghostwriter’ Actor Picks Up BitB for Ukraine-Related Attacks – LINK The Windows Update policies you should set and why […]
I have added a new section that is called Government/Regulation/Russia/Ukraine War related stories. These will be more those relating to the legal/law side of government stories, as well as those specifically around the Russian/Ukrainian War. News/Intelligence/IOCs Stories FBI Releases PIN on Phishing Campaign against U.S. Election Officials – LINK VMware Horizon platform pummeled by Log4j-fueled […]
LINK Good to add to block lists and SIEMs for identification of possible traffic
LINK his joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to highlight the cyber threat associated with active exploitation of a newly identified vulnerability (CVE-2021-44077) in Zoho ManageEngine ServiceDesk Plus—IT help desk software with asset management.
LINK FatPipe released a patch and security advisory, FPSA006, on November 16, 2021, that fixes the vulnerability. All FatPipe WARP, MPVPN, and IPVPN device software prior to releases 10.1.2r60p93 and 10.2.2r44p1 are vulnerable. The security advisory and additional details are available at the following URL: https://fatpipeinc.com/support/cve-list.php.
LINK In recent news we now found out the FBI actually were connecting (with a court order) to networks affected by the Exchange hacks and fixing issues (removing webshell’s put on by the attackers). I am speechless as to this activity, similar to Bruce.
LINK Its been highlighted a few times recently, FortiNet has come out in the last year with some very high damage vulnerabilities and coordinated attacked are continuously being used to exploit them