SecureTeam

VMWare warns of critical zero-day vulnerability

VMWare has issued a security advisory warning of a command injection vulnerability that could allow someone with access to the VMWare Configurator admin account to issue command with unrestricted privileges on the underlying operating system. The vulnerability (CVE-2020-4006) affects VMWare Workspace One Access, Access Connector, Identity Manage and Identify Manager Connector administrative configurator. A malicious […]

VMWare warns of critical zero-day vulnerability Read More »

NCSC alerts over MobileIron vulnerability

News, Vulnerabilities / Ian Reynolds

The UK National Cyber Security Centre has issued an alert warning that multiple actors are attempting to exploit a MobileIron vulnerability to compromise the networks of UK organisations. MobileIron issued a security patch in June 2020 for their Mobile Device Management system to resolve several vulnerabilities in their software. Included was a critical remote code

NCSC alerts over MobileIron vulnerability Read More »

NAT Slipstream attack defeats NAT firewalls

Articles, Infrastructure / Ian Reynolds

NAT Slipstream allows an attacker outside the firewall to remotely access any TCP or UDP services running on a local machine, behind a NAT firewall, simply by tricking the victim into visiting a malicious website. Yes, you read that correctly- by using the NAT Slipstream attack, an attacker is able to send arbitrary traffic to

NAT Slipstream attack defeats NAT firewalls Read More »

SAD DNS vulnerability revives risk of DNS poisoning

News, Vulnerabilities / Ian Reynolds

An award winning security paper published this week explains a newly discovered vulnerability called SAD DNS which leaves many websites vulnerable to man-in-the-middle and impersonation attacks. DNS is the system that converts friendly website addresses (www.secureteam.co.uk) into the numeric IP addresses used by TCP/IP. SAD DNS is a flaw discovered in the DNS protocol which

SAD DNS vulnerability revives risk of DNS poisoning Read More »

Where most Android malware comes from

News / Ian Reynolds

A research paper just published by NortonLifeLock analysed details of app installations on 12 million Android devices and determined that most malware and unwanted apps are actually downloaded from the Google Play store. The research paper examined the installation details of almost 8 million different apps onto 12 million devices during the Autumn of 2019

Where most Android malware comes from Read More »

Ransomware group now using FB Ads to pressure victims

News / Ian Reynolds

On Monday 9th November, Facebook ads started to appear targeting the Campari Group which is still mired in the middle of a ransomware attack. It appears the criminals behind the attack on Campari used a hacked Facebook account to place the ads in order to increase the pressure on Campari to pay the demanded ransom.

Ransomware group now using FB Ads to pressure victims Read More »

November Patch Tuesday fixes 12 RCE vulnerabilities

News, Vulnerabilities / Ian Reynolds

The November security patch bundle from Microsoft fixes 112 security vulnerabilities in their products, including 12 Remote Code Execution vulnerabilities. Noteworthy vulnerabilities fixed this month include: Windows Kernel Local Elevation of Privilege: CVE-2020-17087 Observed under active attack in the wild by Google, CVE-2020-17087 is an elevation of privilege vulnerability that was being used in

November Patch Tuesday fixes 12 RCE vulnerabilities Read More »

Adobe issues Acrobat security patches

News, Vulnerabilities / Ian Reynolds

Adobe has issued patches for critical vulnerabilities in their Acrobat and Acrobat Reader software widely used for creating and reading PDF documents. 12 fixes are included in the latest security updates, three are rated as Critical as they can be exploited to achieve arbitrary code execution. In other words, this means simply opening a specially

Adobe issues Acrobat security patches Read More »

Windows 0-day vulnerability disclosed

News, Vulnerabilities / Ian Reynolds

Google’s Project Zero has disclosed the details of a Windows 0-day vulnerability under active attack which affects all versions from Windows 7 through to Windows 10. No patch is yet available from Microsoft but one is expected in the November 2020 patch Tuesday updates. Last week we published details of a Chrome Browser 0-day vulnerability

Windows 0-day vulnerability disclosed Read More »

The Top 10 vulnerabilities being exploited today

Articles, Information Assurance / Ian Reynolds

The NSA (National Security Agency) recently published a security advisory about the publicly known vulnerabilities currently being exploited by Chinese state-sponsored actors. While this security advisory is focused on the activities of state-sponsored actors, it does show the threats and vulnerabilities considered most useful for exploitation. Taking a quick look at the list could provide

The Top 10 vulnerabilities being exploited today Read More »

November 2020

VMWare warns of critical zero-day vulnerability

NCSC alerts over MobileIron vulnerability

NAT Slipstream attack defeats NAT firewalls

SAD DNS vulnerability revives risk of DNS poisoning

Where most Android malware comes from

Ransomware group now using FB Ads to pressure victims

November Patch Tuesday fixes 12 RCE vulnerabilities

Adobe issues Acrobat security patches

Windows 0-day vulnerability disclosed

The Top 10 vulnerabilities being exploited today

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch