During March and April the NHS was embroiled in a phishing campaign – however the NHS was not the target – 139 compromised NHS email accounts were being used to send the phishing emails to external targets. Coming from legitimate NHS email addresses on NHS servers meant the emails would pass many validation checks and […]
NHS Targeted in Phishing Campaign Read More »
Network security vendor F5 has revealed a critical CVSS 9.8 vulnerability that affects all version of their BIG-IP range from version 11.x through to 16.x The vulnerability which was discovered by F5’s own testing, could allow an unauthenticated attacker with network access to the BIG-IP system through the management port (or self-ip address) to execute
F5 warns of critical BIG-IP vulnerability Read More »
New research from Mandiant shows the explosive growth in zero-day exploits, with more zero-days exploited in attacks in 2021 than in the three previous years combined. The generally accepted definition of a zero-day is: a security vulnerability that is exploited in the wild before a patch was made publicly available. (Microsoft has a slightly different
Zero-days are on the rise Read More »
Researchers at Microsoft have documented a family of vulnerabilities that affect Linux systems, dubbed Nimbuspwn. These vulnerabilities can be chained together in order to gain root privileges on Linux systems allowing attackers to install malware and access all data on the server. The vulnerabilities in the networkd-dispatcher are tracked as CVE-2022-29799 and CVE-2022-29800. Networkd-dispatcher runs as root and
Nimbuspwn vulnerability hits Linux Read More »
Oracle has issued patches for a serious flaw in Java versions 15 to 18 which allows malicious actors to trivially forge digital signatures and TLS certificates that Java then accepts as valid. The problem lies in the Elliptic Curve Digital Signature Algorithm (ECDSA) which was re-written for Java 15 and this introduced the flaw which
Oracle Patches Java signature bypass flaw Read More »
The NCSC has issued updated guidance on the evolving threat from Russian state actors and cyber criminals due to the ongoing war in Ukraine. The joint Cybersecurity Advisory (CSA) from the cybersecurity authorities in the UK, USA, Australia, Canada and New Zealand warns that: “Evolving intelligence indicates that the Russian government is exploring options for
NCSC Updates Guidance on Russian cyber threat Read More »
On 16:10 on Friday 8th April 2022 Russia attempted to repeat their 2016 cyberattack against the Ukrainian power grid – however this time they were foiled. Security firm ESET and the Ukraine Computer Emergency Response Team CERT-UA report how they foiled the attack from the Russian Sandworm APT group which attempted to deploy malware targeting
Russian hack of Ukraine power grid fails Read More »
Microsoft has released fixes for two zero-day vulnerabilities and 143 other flaws in the April 2022 patch Tuesday updates, which includes 10 Critical Remote Code Execution vulnerabilities. Elevation of Privilege Zero Days Microsoft’s definition of a zero day vulnerability is a vulnerability which is either publicly disclosed or actively exploited with no official fix available.
Microsoft Patch Tuesday April 2022 Read More »
Wyze has finally released fixes for vulnerabilities which could give attackers direct access to live video feeds and stored recordings in their smart cameras. Researchers at Bitdefender discovered the first of three vulnerabilities back in 2019 and then waited over a year and a half to report on the third as Wyze had not produced
Wyze Security Camera vulnerabilities Read More »
Spring is a popular enterprise grade application framework for Java, and Spring4Shell is the name given to a remote code execution vulnerability disclosed at the end of March. There has been a lot of hype and confusion in the tech press surrounding this vulnerability, including confusing it with a CVE for Spring Cloud Function which
What is the Spring4Shell vulnerability? Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.