SecureTeam

Exchange 0-day exploits need patching today

Microsoft has published details and out of cycle patches for several 0-day Exchange exploits under active attack. Microsoft Security Response Center advises: Due to the critical nature of these vulnerabilities, we recommend that customers apply the updates to affected systems immediately to protect against these exploits and to prevent future abuse across the ecosystem. The exploits have been linked to the […]

Exchange 0-day exploits need patching today Read More »

What is a pass the hash attack?

Articles, Information Assurance / Ian Reynolds

Pass the hash is a technique used to steal credentials and enable lateral movement within a target network. In Windows networks, the challenge-response model used by NTLM security is abused to enable a malicious user to authenticate as a valid domain user without knowing their password. Even though Kerberos has replaced NTLM as the preferred authentication

What is a pass the hash attack? Read More »

VMware patches critical RCE in vCenter Server

News, Vulnerabilities / Ian Reynolds

A critical vulnerability in vCenter Server could allow an unauthenticated attacker to execute arbitrary code on the server that hosts vCenter and so take over the system. vCenter Server is used by IT Admins to manage VMware installations and the virtual machines that run in the VMware environment. The vulnerability (CVE-2021-21972) in a plug-in used

VMware patches critical RCE in vCenter Server Read More »

What is a dependency confusion attack?

News / Ian Reynolds

A new whitepaper from Microsoft highlights the risks of software supply chain attacks for organisations that pull package dependencies from public repositories like npm, RubyGems and PIP. A dependency confusion attack or supply chain substitution attack occurs when a software installer script is tricked into pulling a malicious code file from a public repository instead

What is a dependency confusion attack? Read More »

What are Web shell attacks?

Articles, Web Applications / Ian Reynolds

Web shell attacks have doubled over the last 6 months according to Microsoft’s Detection And Response Team. But, what are Web Shell Attacks and how can you defend against them? In a recent blog post, Microsoft’s DART detailed the rise in Web Shell Attacks that have been uncovered in Windows Defender telemetry- growing from an

What are Web shell attacks? Read More »

Critical Windows Fax Server Vulnerability Patched – and Why You Should Care

News, Vulnerabilities / Ian Reynolds

In the February 2021 Patch Tuesday security update Microsoft fixed 56 flaws, one zero-day vulnerability and two remote code execution vulnerabilities in the Windows Fax Service. That’s right, someone can send you a fax and take over your Windows system. While you might be tempted to think: ‘who sends faxes these days?’ that is the

Critical Windows Fax Server Vulnerability Patched – and Why You Should Care Read More »

Billion users at risk from vulnerable Android app

News, Vulnerabilities / Ian Reynolds

The SHAREit app has over a billion users on Android – and it can be exploited to steal user’s data or run malicious code on the device. A new report from Trend Micro details the vulnerabilities in the SHAREit app, which is one of the most popular downloads from the Google Play Store. According to

Billion users at risk from vulnerable Android app Read More »

Hackers attempt to Poison Water Supply

News / Ian Reynolds

A hacker tried to poison the water supply in Oldsmar, Florida by dumping caustic soda into the water by adjusting the SCADA system in control of the water treatment plant. On Friday 5th February, an operator at the water plant noticed the mouse on his screen moving and accessing the control system software for the

Hackers attempt to Poison Water Supply Read More »

Plex Media Server abused in DDOS Attacks

News, Vulnerabilities / Ian Reynolds

37,000 Plex Media servers exposed to the internet are being abused in DDOS attacks according to a new security report. Plex Media Server is a personal media library and streaming platform available on Windows, Mac and Linux platforms. One of the attractions of Plex is the ability to stream your local media library to remote

Plex Media Server abused in DDOS Attacks Read More »

What is the Nat Slipstreaming2.0 Attack?

News, Vulnerabilities / Ian Reynolds

The NAT Slipstreaming2.0 attack exploits the standard support for VOIP routing in NAT routers/firewalls to expose all devices on the internal network to attack from the internet. A new variant of the NAT Slipstreaming attack has been published which extends the attack to abuse the H.323 protocol used by VOIP devices to manage call forwarding.

What is the Nat Slipstreaming2.0 Attack? Read More »

2021

Exchange 0-day exploits need patching today

What is a pass the hash attack?

VMware patches critical RCE in vCenter Server

What is a dependency confusion attack?

What are Web shell attacks?

Critical Windows Fax Server Vulnerability Patched – and Why You Should Care

Billion users at risk from vulnerable Android app

Hackers attempt to Poison Water Supply

Plex Media Server abused in DDOS Attacks

What is the Nat Slipstreaming2.0 Attack?

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch