Microsoft has warned that Kubernetes clusters are being targeted in a cryptomining attack while Palo Alto Networks has identified the first malware that targets Windows Containers – in order to compromise the Kubernetes clusters that host them. Cryptomining on Kubernetes Kubeflow is a popular framework for deploying Machine Learning workloads in a Kubernetes environment. Microsoft […]
Windows Containers and Kubernetes under attack Read More »
The June security updates include 7 zero-day exploits fixed in Microsoft code, 5 high-severity bugs in Intel BIOS firmware and Security Library, and 21 critical vulnerabilities fixed in Adobe products. Microsoft Updates The June 2021 security updates from Microsoft resolves 7 zero-day vulnerabilities- six of them known to be exploited in the wild – and
June Patch Tuesday and Vulnerability Roundup Read More »
Hewlett Packard Enterprise has released a patch to fix a critical remote code execution vulnerability in the Windows version of their System Insight Manager. The bug in the Federated Search and CMS Configuration (CVE-2020-7200) feature of version 7.6.x of HPE SIM, has a critical CVSS score of 9.8. According to the security advisory from HPE,
HPE patches RCE 0day in SIM software Read More »
The world’s largest meat producer had to shut down operations in the USA and Australia for several days after a cyberattack at the weekend. JBS Foods operates in 190 countries with 245,000 employees. According to a company statement: On Sunday, May 30, JBS USA determined that it was the target of an organized cybersecurity attack,
Worlds largest beef supplier hit by ransomware Read More »
Firefox has rolled out a new Site Isolation feature that greatly improves the security of the web browser by isolating every domain visited into a separate process. This provides protection against Meltdown and Spectre style attacks and cross site attacks that attempt to thwart the Same-Origin policy. Known internally as Project Fission, this significant development
Firefox Fission enhances web security Read More »
A report from PaloAlto Networks coins a new security metric: Mean Time to Inventory in order to highlight the incredible speed with which attackers are now targeting new vulnerabilities as soon as they are publicly disclosed. The report is based on three month’s monitoring of 50 million IP addresses owned by global enterprises in order
What is Mean Time To Inventory? Read More »
New research into the market for exploits on the Dark Web reveals that 61% of exploits sold target Microsoft products including Windows OS, Office, RDP and Internet Explorer. The research presented by Trend Micro at the RSA 2021 Conference this week is the result of a year-long study of 600 dark web forums and markets
Criminals favour Microsoft exploits above all Read More »
Design and Implementation flaws in Wi-Fi standards have been disclosed that could leave home and enterprise Wi-Fi networks vulnerable. The flaws are thought to affect all Wi-Fi systems from WEP through to the latest WPA3 security standard. The vulnerabilities have been named FragAttacks as they are mainly related to flaws in the way Wi-Fi fragments
Wi-Fi FragAttacks expose flaws in WPA2, WPA3 Read More »
May Patch Tuesday sees four critical vulnerabilities patched by Microsoft and Adobe ships a fix for an Acrobat Reader zero-day that is under attack in the wild. Microsoft Patch Tuesday May 2021 55 vulnerabilities, 4 critical, are resolved in the May security patch bundle from Microsoft. Of particular note are: CVE-2021-31166 which is a Windows
Microsoft and Adobe release patches for zero day vulnerabilities Read More »
Over 25% of the TOR network exit nodes have been under the control of malicious actors who are performing man-in-the-middle attacks against network users. What is the TOR Network The TOR Network is a volunteer run network of relay servers that aims to provide anonymous and secure internet access that prevents its users from being
Users of TOR network hit by man-in-the-middle attacks Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.