SecureTeam

Yet another Exchange Server vulnerability

Details have emerged of (another) Exchange Server vulnerability, called ProxyToken, which allows an attacker to reconfigure an Exchange server remotely without needing to know any passwords. Reported by the Zero Day Initiative the vulnerability affects Exchange server versions 2013 through 2019: With this vulnerability, an unauthenticated attacker can perform configuration actions on mailboxes belonging to […]

Yet another Exchange Server vulnerability Read More »

ProxyShell vulnerability hits Exchange Servers

News, Vulnerabilities / Ian Reynolds

ProxyShell can be exploited to achieve a Remote Code Execution without needing to know any usernames or passwords for the targeted Exchange Server – security vulnerabilities do not come any worse than this. ProxyShell is easier to exploit than the ProxyLogon attacks that hit the headlines earlier this year, prompting CISA to issue their first ever

ProxyShell vulnerability hits Exchange Servers Read More »

VPN insecurity woes continue for Pulse Secure and Cisco

News, Vulnerabilities / Ian Reynolds

Cisco and Pulse Secure have both issued security advisories warning of critical Remote Code Execution vulnerabilities that affect some of their VPN servers. Pulse Secure Pulse Secure has shipped a patch to resolve several Remote Code Execution vulnerabilities in its Connect Secure VPN appliances. The August release addresses these issues and the vendor ‘strongly advises’

VPN insecurity woes continue for Pulse Secure and Cisco Read More »

Billions of IoT devices have vulnerable crypto

News / Ian Reynolds

35 billion, that’s billion with a B – IoT devices are using flawed hardware and copied reference code that leaves their security vulnerable according to a presentation at this month’s Def Con security conference. Cryptography relies on using random numbers, yet computers are very poor at generating random numbers and so they rely on an

Billions of IoT devices have vulnerable crypto Read More »

How the No More Ransom project helps victims of ransomware

News, Tools / Ian Reynolds

In 2016, Europol, the Netherlands Police and leading anti-virus companies joined forces to create the No More Ransom project, which to date has helped over 6 million ransomware victims recover their files and avoid paying €1billion in ransom. The nomoreransom.org website provides advice for individuals and businesses on how to protect themselves against ransomware and

How the No More Ransom project helps victims of ransomware Read More »

The PrintNightmare continues

News, Vulnerabilities / Ian Reynolds

Since the start of June there has been a confusing number of security vulnerabilities reported in the Windows Print Spooler. Let me explain what is going on. CVE-2021-1675 This is the vulnerability that caused some initial confusion – a Remote Code Execution vulnerability in the Windows Print Spooler. This is not the vulnerability known as

The PrintNightmare continues Read More »

Telegram vulnerabilities discovered

News, Tools / Ian Reynolds

Security researchers at the University of London discovered several vulnerabilities in the home grown cryptography used by the Telegram messaging app which boasts half a billion users. The four vulnerabilities discovered in Telegrams bespoke MTProto protocol highlight the dangers of trying to invent new cryptographic systems rather than using proven existing solutions. MTProto is used by

Telegram vulnerabilities discovered Read More »

16 year old printer bug exposes millions of systems

News, Vulnerabilities / Ian Reynolds

SentinelLabs has discovered a severe escalation of privilege vulnerability in a printer driver used by HP, Samsung and Xerox devices since 2005 – affecting over 390 printer models and millions of computers. The vulnerable driver gets installed on Windows systems without any user intervention, simply by plugging in a printer with a USB cable or

16 year old printer bug exposes millions of systems Read More »

Microsoft releases emergency patch for PrintNightmare

News, Vulnerabilities / Ian Reynolds

Microsoft has released an emergency patch that addresses the remote code execution vulnerability in the Windows Print Spooler, known as the PrintNightmare. According to Microsoft in their security advisory: A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run

Microsoft releases emergency patch for PrintNightmare Read More »

NCSC warns of global Russian Cyber Campaign

Articles, Information Assurance / Ian Reynolds

The UK National Cyber Security Centre has issued a stark warning of the dangers posed by an ongoing Russian campaign of cyber espionage and attacks against enterprise systems and cloud environments in Europe and around the world. The Cyber Security Advisory is a joint creation of the NCSC working with the NSA, CISA and FBI

NCSC warns of global Russian Cyber Campaign Read More »

cyber security news

Yet another Exchange Server vulnerability

ProxyShell vulnerability hits Exchange Servers

VPN insecurity woes continue for Pulse Secure and Cisco

Billions of IoT devices have vulnerable crypto

How the No More Ransom project helps victims of ransomware

The PrintNightmare continues

Telegram vulnerabilities discovered

16 year old printer bug exposes millions of systems

Microsoft releases emergency patch for PrintNightmare

NCSC warns of global Russian Cyber Campaign

Our Address

Talk to us

Office Hours

Company Number

VAT Registration Number

Penetration Testing

Risk & Compliance Services

Quick Links

information. secured.

Head Office Address

Opening Hours

Stay in Touch