The flaws are detected as CVE-2019-1721 and CVE-2019-1694. The flaws impact Cisco’s TelePresence Video Communication Server and ASA 5500-X Series Firewalls. Cisco has released security patches for two high-severity flaws that can allow attackers to launch Denial of Service (DoS) attacks. The flaws are detected as CVE-2019-1721 and CVE-2019-1694. The flaws impact Cisco’s TelePresence Video Communication Server and ASA 5500-X ...
Read More »Author Archives: firewallsadmin
Attackers delete GitHub, GitLab, and Bitbucket repositories and replace with ransom notes
A GitHub search revealed almost 400 Github repositories that have been targeted in this manner. According to BitcoinAbuse.com, there have been 27 abuse reports and all the abuse reports include the same ransom note. What is the issue? Attackers have targeted GitHub, GitLab, and Bitbucket users by replacing the code and commits from the victims’ Git repositories and leaving a ...
Read More »New ransomware called MegaCortex infects corporate computer networks
It is reported that the attackers spread this ransomware mainly using Windows domain controllers in the victim’s network. Furthermore, the group used a mix of automation tools and manual components in order to deploy the ransomware to a large number of victims. A new ransomware has been discovered this past week. Known as ‘MegaCortex’, the ransomware targeted victims across the ...
Read More »Watertown Daily Times again gets hit with Ryuk ransomware attack
The ransomware spread throughout Johnson Newspaper Corp., infecting servers used for internal sharing of content used to produce newspapers in Watertown, Hudson, and Massena. The ransomware attack also impacted the media firm’s emails server and Internet-based phones. Watertown Daily Times, which was initially targeted with a cyber attack on April 27, 2019, was again targeted with a ransomware infection on ...
Read More »Mirrorthief cybercrime group targets online campus stores in the US and Canada with card skimming malware
The group has impacted 201 online campus stores in the United States and Canada. The group is using Trojan.JS.MIRRORTHEIF.AA to steal payment card and personal details of customers. The Magecart credit card skimming attack has recently been found to be linked with a new cybercrime group called Mirrorthief. The group has impacted 201 online campus stores in the United States ...
Read More »Google adds option to auto-delete search and location history data
Following a year’s worth of privacy scandals and criticism for collecting users’ geo-location data, Google announced today plans to roll out a new feature that will let users auto-delete location, browsing, and search history data from their accounts after a certain period of time. The new feature is set to roll out in the coming weeks, according to Google, and ...
Read More »Around 50000 firms that use SAP solutions left vulnerable with new exploits
The exploits could be used by attackers to fully compromise SAP applications as well as delete all business data. Vulnerabilities present in SAP NetWeaver installations were primarily targeted by these exploits. Around 50,000 companies using SAP software are at great risks as new exploits target software configuration flaws. A recent report by cybersecurity firm Onapsis has detailed these exploits, which ...
Read More »LockerGoga: An insight into the ransomware that targets industrial and manufacturing companies
LockerGoga infected companies include Altran Technologies, Norsk Hydro, Hexion, and Momentive. The ransomware was first spotted on January 24, 2019, when it infected Altran Technologies, forcing the French company to shut down its IT network and all applications. LockerGoga is a ransomware that primarily targets industrial and manufacturing companies. LockerGoga infected companies include Altran Technologies, Norsk Hydro, Hexion, and Momentive. ...
Read More »Ad Server Patched to Stop Possible Malware Distribution
Revive Adserver patches two vulnerability, one of which may have been used to allow hackers to deliver malware to third-party websites. UPDATE The open-source advertising platform Revive Adserver is urging customers to patch two vulnerabilities, one of which is critical and may have been exploited to allow hackers to deliver malware to third-party websites. Revive Adserver, formerly known as OpenX ...
Read More »Cisco warns of a critical vulnerability in Nexus data-center switches
The security flaw could allow attackers to surreptitiously access system resources of data centers. Designated as CVE-2019-1804, the flaw was given a severity rating of 9.8 out of 10. A severe vulnerability in Nexus switches has been uncovered by the Cisco team. The flaw was disclosed by the networking company in its security advisories released this week. Secure Shell (SSH ...
Read More »