Security Advisories

Security Advisories

10/23/2020

Microsoft recently published a security patch addressing a remote code execution vulnerability in the IPv6 stack, known as CVE-2020- 16898 or "Bad Neighbor". The issue is caused by an improper handling of Router Advertisement messages, which are part of the Neighbor Discovery protocol.

10/20/2020

Nearly 800,000 VPNs around the world need urgent patching after vendor (Dell SonicWall) issued a security update for a critical flaw last week.

10/15/2020

Kraken Attack operators injects malicious payload into legitimate Microsoft Windows Error Reporting (WER) Service to evade detection.

9/29/2020

A new malware family called Mozi, using several known malware families code– Gafgyt, Mirai and IoT Reaper have been brought together to form a peer-to-peer (P2P) botnet capable of DDoS attacks, data exfiltration and command or payload execution. 

9/21/2020

Hackers are launching brute-force attacks on MSSQL servers to install a new crypto-mining malware MrbMiner.

9/20/2020

The vulnerability, dubbed as “Zerologon,” is a critical severity, privilege-escalation vulnerability (CVE-2020-1472) assigned a CVSS score of 10 out of 10. The flaw was addressed in Microsoft’s August 2020 security updates.

9/14/2020

Visa detected an advanced and unique E-skimming JavaScript based malware kit that is able to steal payment card data from ecommerce sites and uses anti-detection techniques to hide from security scanners.

9/09/2020

Cryptojacking worm Cetus infects unsecured Docker daemons with XMRig cryptominer payload to mine monero.

9/01/2020

FitzFrog botnet written in GOlang is using secure and encrypted Peer-to-Peer communication protocol to distribute malware and take control of device nodes. Encrypted communication makes the botnet difficult to detect and enables it to propagate across multiple infected SSH servers.

8/11/2020

A high severity vulnerability, CVE 2020-13699, in TeamViewer could allow for offline password cracking when visiting malicious website.

7/31/2020

The new “BootHole” vulnerability in the GRUB2 bootloader opens up Windows and Linux devices using Secure Boot to attack.

7/30/2020

The stealthier and most sophisticated modular variant of Valak malware appears to be an emerging threat due to an increased volume of campaign activity to steal sensitive information and deploy additional malware.

7/20/2020

TrickBot, initially developed as banking malware is now constantly evolving and aggregates powerful techniques to attack variety of organizations. TrickBot is often used with other malware in multistage attacks.

7/20/2020

Fraudsters are sending Fake MUDRA Loan Approval Letters asking people to pay loan processing fees via Whatsapp, SMS, email for loan payment.

7/20/2020

Microsoft has just released emergency security patches for two critical security holes in the Windows Codecs Library.

7/20/2020

A variant of the CryptoMix, Clop ransomware is spreading via executables with legitimate digital signatures and is targeting entire networks instead of individual users.

7/20/2020

The Evil Corp group targets victims with WastedLocker Ransomware; uses multiple unknown distribution methods including SocGholish. SocGholish is a fake update framework, which is delivered to the victim in a zipped file via compromised websites.

7/20/2020

Conti Ransomware infection, is increasing by the day, using unique techniques like fast encryption, string encoding, targeted damage and abusing Windows Restart Manager.

7/20/2020

Emotet is back with massive malspam campaign containing malicious links and documents to install backdoor and deliver other malware.


Download the Security Alert Brochure