DHS-CISA Urges Admins To Patch OpenSSL DoS Vulnerability This week OpenSSL has released fixes for a high severity Denial of Service (DoS) vulnerability impacting the open source project. U.S. DHS Cybersecurity and Infrastructure Security Agency (CISA) has warned admins to upgrade their vulnerable OpenSSL instances immediately. Caused by null pointers in SSL certificate name validation The Read more…
Credit Card Stealer Hides In CSS Files Of Hacked Online Stores Credit card stealer scripts are evolving and become increasingly harder to detect due to novel hiding tactics. The latest example is a web skimmer that uses CSS code to blend within the pages of a compromised store and to Read more…
Russian Hackers Hide Zebrocy Malware In Virtual Disk Images Russian-speaking hackers behind Zebrocy malware have changed their technique for delivering malware to high-profile victims and started to pack the threats in Virtual Hard Drives (VHD) to avoid detection. The technique was spotted in recent spear-phishing campaigns from threat group APT28 Read more…
Adobe Fixes Critical Security Vulnerabilities In Lightroom, Prelude Adobe has released security updates to address critical severity security bugs affecting Windows and macOS versions of Adobe Lightroom and Adobe Prelude. In total, the company addressed four security vulnerabilities affecting three products, three of them rated as critical and one as an Read more…
Microsoft Fixes New Windows Kerberos Security Bug In Staged Rollout Microsoft has issued security updates to address a Kerberos security feature bypass vulnerability impacting multiple Windows Server versions in a two-phase staged rollout. The vulnerability tracked as CVE-2020-16996 is exploitable remotely by attackers with low privileges as part of low complexity attacks where user Read more…
Ransomware Forces Hosting Provider Netgain To Take Down Data Centers Cloud hosting and IT services provider Netgain was forced to take some of their data centers offline after suffering a ransomware attack in late November. Netgain offers hosting and cloud IT solutions, including managed IT services and desktop-as-a-service environments, to companies in Read more…
FireEye Reveals That It Was Hacked By A Nation State APT Group Leading cybersecurity company FireEye disclosed today that it was hacked by a threat actor showing all the signs of a state-sponsored hacking group. The attackers were able to steal Red Team assessment tools FireEye uses to test customers’ Read more…
Microsoft Issues Guidance For DNS Cache Poisoning Vulnerability Microsoft issued guidance on how to mitigate a DNS cache poisoning vulnerability reported by security researchers from the University of California and Tsinghua University. Successfully exploiting the vulnerability could allow attackers to use modified DNS records to redirect a target to a malicious website under Read more…
Microsoft December 2020 Patch Tuesday Fixes 58 Vulnerabilities Today is Microsoft’s December 2020 Patch Tuesday, and Windows administrators will be scrambling to put out fires, so be kind to them. With the December 2020 Patch Tuesday security updates release, Microsoft has released fixes for 58 vulnerabilities and one advisory for Microsoft products. Of Read more…
Windows 10 Cumulative Updates KB4592449 & KB4592438 Released The first batch of security updates or ‘B’ updates for the month of ‘December 2020’ is now available for all supported versions of Windows 10 including version 20H2. If you want to grab these updates, check for updates in the Settings and the update will Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
