Call us today on: +44 (0)203 88 020 88
SecureTeamSecureTeamSecureTeamSecureTeam
  • Home
  • Our Services
    • Infrastructure Testing
      • Internal Network Penetration Test
      • External Network Penetration Test
      • Vulnerability Assessment
    • Web Application Penetration Test
    • Configuration Review
      • Windows Build Review
    • Information Assurance
      • ISO 27001 Gap Analysis
    • Cyber Essentials Certification
  • News
  • Articles
  • About
    • About SecureTeam
    • Cookie Policy
    • Privacy Notice
    • Website Terms & Conditions
    • White-Label Consultancy
    • Jobs
  • Contact Us

Blog

Home 2019 September

Lastpass fixes Chrome plugin vulnerability

By Mark Faithfull | News | 23 September, 2019 | 0

LastPass, the world most popular password vault, has issued a fix to an information disclosure flaw discovered by Google’s Project Zero. Google’s Project Zero security research team discovered a flaw in the LastPass plugins for the Chrome and Opera browsers.  By exploiting the flaw, an attacker could obtain a copy of the last credentials theRead more

RCE bugs fixed in patch Tuesday for September

By Mark Faithfull | News | 23 September, 2019 | 0

The September Patch Tuesday release from Microsoft included 18 critical fixes and 79 in total.  The fixes include several Remote Code Execution vulnerabilities: RDP client-side remote code execution vulnerabilities Four remote code execution vulnerabilities were fixed in the Remote Desktop Services client.  If a user can be tricked into connecting to a malicious RDP serverRead more

Exim remote code execution vulnerability

By Mark Faithfull | News | 23 September, 2019 | 0

Exim, which powers 60% of the Internet’s email servers, is vulnerable to a remote code execution (CVE-2019-15846) in all versions prior to 4.92.2 which has just been released to patch the problem.  TLS connections must be enabled in order to exploit the vulnerability. The flaw exists in the way Exim handles SNI (Server Name Indication)Read more

Recent Posts

  • Bluekeep exploits seen in the wild
  • Email fraud costs Nikkei millions
  • The risks of nation state actors to your business
  • RCE affects PHP 7 on NGINX
  • Voicemail phishing campaign targets Office365

Tags

blockchain Bluetooth Botnet Chrome Cisco Confluence CREST cyber crime cyber essentials cyber security cyber security news Data Protection Dell DHCP DNS Ethereum Exchange Server exim formjacking GDPR Hadoop Linux Magecart Meltdown microsoft Mirai OpenOffice patching PDF penetration testing phishing ransomware RDP Row Hammer security breach security testing Spectre supply chain attacks Sysinternals Tomcat UK Law vulnerability management web applications web browsers wireless

Archives

  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • July 2018
  • June 2018
  • April 2018
  • January 2018
  • October 2017
BCS Cyber Essentials Cyber Essentials Cyber Essentials PLUS
information. secured.
  • Home
  • Our Services
    • Infrastructure Testing
      • Internal Network Penetration Test
      • External Network Penetration Test
      • Vulnerability Assessment
    • Web Application Penetration Test
    • Configuration Review
      • Windows Build Review
    • Information Assurance
      • ISO 27001 Gap Analysis
    • Cyber Essentials Certification
  • News
  • Articles
  • About
    • About SecureTeam
    • Cookie Policy
    • Privacy Notice
    • Website Terms & Conditions
    • White-Label Consultancy
    • Jobs
  • Contact Us
SecureTeam
SecureTeam use cookies on this website to ensure that we give you the best experience possible. If you continue to use our site we will assume that you are happy with cookies being used.OkRead more