News/Intelligence/IOCs Stories New Meta information stealer distributed in malspam campaign – LINK EU officials were targeted with Israeli surveillance software – LINK FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin – LINK Enemybot: a new Mirai, Gafgyt hybrid botnet joins the scene – LINK Clueless hackers spent months inside a network and nobody noticed. […]
News/Intelligence/IOCs Stories New AcidRain data wiper malware targets modems and routers – LINK Chinese hacking group uses new ‘Fire Chili’ Windows rootkit – LINK Researchers used a decommissioned satellite to broadcast hacker TV – LINK Belarusian ‘Ghostwriter’ Actor Picks Up BitB for Ukraine-Related Attacks – LINK The Windows Update policies you should set and why […]
NOTE: I am thinking of changing the design a bit to instead of having one post per item, to one post per day with everything. Here is a first try CISA – Adds 32 Known Exploited Vulnerabilities to Catalog – LINK – CSV Download Link CISA – Vulnerability Summary for the Week of March 21, […]
LINK Time to patch!
LINK CVE-2021-41379 is out there and active. No update yet from Microsoft.
LINK Essentially, the abuse of the old NTLM protocol is happening. Something that needs to be investigated for immediate retirement on your network.
LINK A serious elevation of privilege flaw found could allow a local attacker run their own code with sys privs. Read the article closely for the way this is resolved and to confirm if you are in fact vulnerable.
LINK I know I have missed one or two new PrintNightmare updates with NEW vulnerabilities. Its time if you have not to immediately disable the Print Spooler unless you absolutely need it. PERIOD.
LINK If you have Windows…we have an update for you.
LINK LINK MS Patched CVE-2021-1675 in the beginning of June however, the patch doesn’t fix the vulnerability on Windows Server 2019 it looks. This looks to be a nightmare coming and more will come out on this.