SecureTeam

Install patches to protect Domain Controllers warns Microsoft

Proof of Concept code has been published showing how to exploit two vulnerabilities that would allow an attacker to obtain domain admin privilege on your Windows Domain Controllers. In the November security patch bundle, Microsoft released patches to resolve two vulnerabilities ( CVE-2021-42287 and CVE-2021-42278 ) in the Windows Active Directory Domain Services. On December 12th a proof […]

Install patches to protect Domain Controllers warns Microsoft Read More »

December Patch Tuesday updates

News, Vulnerabilities / Ian Reynolds

This week Microsoft released their last monthly security patch bundle for the year, fixing six zero-day vulnerabilities – and many other companies released security updates as well. Microsoft Updates for December This month Microsoft’s security bundle includes fixes for 67 vulnerabilities with six of them classified as zero-day – which means in Microsoft’s terms: that

December Patch Tuesday updates Read More »

Google tackles Glupteba botnet

News / Ian Reynolds

The Glupteba botnet targets Windows computers to steal passwords or commit fraud through the infected computer and is thought to include about a million compromised devices. It is growing at a rate of thousands of new systems every day. According to Google: Glupteba is notorious for stealing users’ credentials and data, mining cryptocurrencies on infected

Google tackles Glupteba botnet Read More »

Mozilla warns of digital signature vulnerability

News, Vulnerabilities / Ian Reynolds

Mozilla has published a security advisory warning of a critical security vulnerability in the Network Security Services libraries which are widely used by open-source software. While the bug does not impact Mozilla Firefox, it is thought to affect many other email clients and PDF viewers that use the electronic signature verification features of the Network

Mozilla warns of digital signature vulnerability Read More »

How to defend against the RATdispenser

News, Tools / Ian Reynolds

A new report from HP’s Threat Research Blog provides details of an evasive Javascript loader that gets passed security tools 89% of the time. Remote Access Trojans (RATs) are a class of malware that is designed to gain persistent access to the target computer system, and by leveraging elevation of privilege vulnerabilities gain administrator rights

How to defend against the RATdispenser Read More »

New law to make IoT devices more secure

News / Ian Reynolds

The UK Government has introduced new legislation which will improve the security of smartphones, IoT devices and connected appliances. The Product Security and Telecommunications Infrastructure (PSTI) Bill will require the manufacturers, importers and distributors of consumer connectable products to comply with cyber security good practices. According to the Government the regulations that flow from the new

New law to make IoT devices more secure Read More »

What is a PrintJack attack?

News / Ian Reynolds

A new research paper looks at the security risks posed by the printers found in most offices and homes – and coins the term PrintJack to mean the hijacking of a printer by a threat actor. The research paper outlines three types of attack that could leverage a compromised printer. The standard TCP/IP port used

What is a PrintJack attack? Read More »

Attackers rapidly target Microsoft vulnerabilities

News, Vulnerabilities / Ian Reynolds

This week there have been several exploits published that target recently published (and patched) vulnerabilities in Microsoft Exchange Server and Windows 10/11 systems. Coming just a week after Microsoft published patches for these vulnerabilities, already proof of concept code has been made available on GitHub and threat actors have started targeting the exploits hoping to

Attackers rapidly target Microsoft vulnerabilities Read More »

Blacksmith brings down the Rowhammer

News, Vulnerabilities / Ian Reynolds

Blacksmith is a new kind of Rowhammer attack that has been proved to successfully bypass existing Rowhammer protections in modern DDR4 memory chips – allowing researchers to extract security secrets and change memory contents on victim computers. What is Rowhammer? Modern computer memory chips are physically very dense – with billions of memory cells (each

Blacksmith brings down the Rowhammer Read More »

Palo Alto Networks patches VPN/Firewalls

News, Vulnerabilities / Ian Reynolds

Palo Alto Networks has released a critical patch for their firewalls with GlobalProtect Portal or Gateway interfaces. With a critical severity rating of 9.8, this memory corruption vulnerability could allow an attacker to execute remote code on the firewall with root privileges. According to the security advisory published by Palo Alto Networks: This issue is

Palo Alto Networks patches VPN/Firewalls Read More »

News

Install patches to protect Domain Controllers warns Microsoft

December Patch Tuesday updates

Google tackles Glupteba botnet

Mozilla warns of digital signature vulnerability

How to defend against the RATdispenser

New law to make IoT devices more secure

What is a PrintJack attack?

Attackers rapidly target Microsoft vulnerabilities

Blacksmith brings down the Rowhammer

Palo Alto Networks patches VPN/Firewalls

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch