SecureTeam

Stack-Based Buffer Overflows in Ivanti Avalanche

Multiple stack-based buffer overflows have been identified in Ivanti Avalanche, tracked as a single vulnerability with a critical severity rating and CVSS base score of 9.8/10. Ivanti Avalanche is an enterprise mobility management (EMM) solution used by organisations to manage and monitor mobile devices securely. Researchers at Tenable discovered and investigated these flaws, publishing an […]

Stack-Based Buffer Overflows in Ivanti Avalanche Read More »

Microsoft Teams Used in Social Engineering Attacks

News, Social Engineering / Ian Reynolds

Highly targeted phishing attacks have been carried out by the threat actor Midnight Blizzard, previously known as NOBELIUM, via Microsoft Teams. These attacks targeted a range of organisations including government and non-government organisations, IT services, technology businesses, manufacturing, and media companies. Through social engineering techniques Midnight Blizzard were able to achieve token and credential theft

Microsoft Teams Used in Social Engineering Attacks Read More »

LinkedIn Accounts Hijacked By Cyber Criminals

News, Vulnerabilities / Ian Reynolds

LinkedIn accounts have been targeted by attackers in hacking events that have led to users being locked out of their own accounts by LinkedIn, and unable to recover them through LinkedIn support. The cyber criminals conducting these account takeover attacks have pressured their victims into paying ransoms to recover their accounts under the threat of

LinkedIn Accounts Hijacked By Cyber Criminals Read More »

Malware Attacks Target Zyxel End-Of-Life Routers

News, Vulnerabilities / Ian Reynolds

A five-year-old vulnerability is currently being exploited in Zyxel P660HN-T1A routers to introduce a Gafgyt malware variant onto target networks. An outbreak alert has been issued by Fortinet to inform users that this end-of-life router running versions before 7.3.15.0 v001/ 3.40 (ULM.0)b31 is being actively targeted in the wild. Zyxel published a security advisory back

Malware Attacks Target Zyxel End-Of-Life Routers Read More »

Actively Exploited Office RCE Attack Chain Patched

News, Vulnerabilities / Ian Reynolds

A Defense-In-Depth Office update has been released by Microsoft as a part of the Patch Tuesday updates made available this week to fix an actively exploited remote code execution (RCE) flaw. This vulnerability was first identified last month, when it was confirmed to be actively exploited and publicly disclosed. At the time of discovery, it

Actively Exploited Office RCE Attack Chain Patched Read More »

PaperCut Flaw Allows RCE on Windows Servers

News, Vulnerabilities / Ian Reynolds

A critical severity flaw in PaperCut NG and PaperCut MF print management applications that can allow unauthenticated attackers to perform remote code execution (RCE) on vulnerable Windows servers. Any use of the affected PaperCut software prior to version 22.1.3 on Windows that is exposed to the internet is vulnerable to exploitation. For the best security,

PaperCut Flaw Allows RCE on Windows Servers Read More »

Zimbra Collaboration Suite Patch Zero-Day Flaw

News, Vulnerabilities / Ian Reynolds

A zero-day cross-site scripting (XSS) flaw that has been exploited in the wild has now been patched for Zimbra Collaboration Suite in version 8.8.15 patch 41. Two other vulnerabilities have been patched in this update, which are a high severity flaw that can allow for denial of service (DoS) attacks, and another vulnerability that can

Zimbra Collaboration Suite Patch Zero-Day Flaw Read More »

Canon Printers Retain Wi-Fi Information After Wipe

News, Vulnerabilities / Ian Reynolds

Canon Inkjet printers have been found to retain sensitive Wi-Fi information after the usual wipe that is performed in the initialisation process. Canon have released a security advisory to warn their customers that information that can be used to connect to previously connected Wi-Fi is kept within the memory of the Wi-Fi connection settings, and

Canon Printers Retain Wi-Fi Information After Wipe Read More »

Microsoft Key Used for Unauthorised Email Access

Information Assurance, News / Ian Reynolds

The threat actor tracked by Microsoft as Storm-0558 has been able to utilise a stolen consumer signing key to access accounts and emails in Exchange Online through Outlook Web Access (OWA), and on Outlook.com. This threat actor is thought to be based in China and has a history of targeting Western European and U.S.-based companies

Microsoft Key Used for Unauthorised Email Access Read More »

Ivanti Patch Actively Exploited EPMM Zero-Day Flaw

News, Vulnerabilities / Ian Reynolds

An actively exploited vulnerability has been patched in that latest updates for Ivanti Endpoint Manager Mobile (EPMM), previously known as MobileIron Core. This zero-day flaw affects all supported versions of this mobile device management software, as well as some older release versions before EPMM 11.8.1.0 that are no longer managed by the developers. Ivanti have

Ivanti Patch Actively Exploited EPMM Zero-Day Flaw Read More »

News

Stack-Based Buffer Overflows in Ivanti Avalanche

LinkedIn Accounts Hijacked By Cyber Criminals

Malware Attacks Target Zyxel End-Of-Life Routers

Actively Exploited Office RCE Attack Chain Patched

PaperCut Flaw Allows RCE on Windows Servers

Zimbra Collaboration Suite Patch Zero-Day Flaw

Canon Printers Retain Wi-Fi Information After Wipe

Microsoft Key Used for Unauthorised Email Access

Ivanti Patch Actively Exploited EPMM Zero-Day Flaw

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch