Highlights and Updates

Juniper Networks Releases Security Updates

Thursday, 9th January 2020

Juniper Networks has released security updates to addressmultiple vulnerabilities in various Juniper products. A remote attacker couldexploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review the Juniper Security Advisorieswebpage and apply the necessary updates.

Cisco Releases Security Updates for Multiple Products

Wednesday, 8th January 2020

Cisco has released security updates to addressvulnerabilities in Cisco Webex Video Mesh, Cisco IOS, and Cisco IOS XESoftware. A remote attacker could exploit these vulnerabilities to take controlof an affected system. For updates addressing lower severity vulnerabilities, seethe Cisco Security Advisories webpage.

We encourage users and administrators to review the CiscoWebex Video Mesh Advisory and the Cisco IOS and IOS XE Software Advisory andapply the necessary updates.

Mozilla Patches Critical Vulnerability

Wednesday, 8th January 2020

Mozilla has released security updates to address avulnerability in Firefox and Firefox ESR. An attacker could exploit thisvulnerability to take control of an affected system. This vulnerability was detectedin exploits in the wild.

We encourage users and administrators to review the Mozilla Security Advisory forFirefox 72.0.1 and Firefox ESR 68.4.1 and apply the necessary updates.

Drupal Releases Security Updates

Monday, 23rd December 2019

Drupal hasreleased security updates to address vulnerabilities in Drupal 7.x, 8.7.x, and8.8.x. An attacker could exploit some of these vulnerabilities to modify dataon an affected website.

Spear phishing campaigns—they’re sharper than you think

Tuesday, 3rd December 2019

Even yourmost security-savvy users may have difficulty identifying honed spear phishingcampaigns. Unlike traditional phishing campaigns that are blasted to a largeemail list in hopes that just one person will bite, advanced spear phishingcampaigns are highly targeted and personal. They are so targeted, in fact, thatwe sometimes refer to them as “laser” phishing. And because these attacks areso focused, even tech-savvy executives and other senior managers have beenduped into handing over money and sensitive files by a well-targeted email.That’s how good they are. Read More

New Unpatched Strandhogg Android Vulnerability Actively Exploited in the Wild

Tuesday, 3rd December 2019

Cybersecurityresearchers have discovered a new unpatched vulnerability in the Androidoperating system that dozens of malicious mobile apps are already exploiting inthe wild to steal users' banking and other login credentials and spy on theiractivities.

Dubbed Strandhogg, thevulnerability resides in the multitasking feature of Android that can beexploited by a malicious app installed on a device to masquerade as any otherapp on it, including any privileged system app.

In other words, when a user taps the icon of alegitimate app, the malware exploiting the Strandhogg vulnerability canintercept and hijack this task to display a fake interface to the user insteadof launching the legitimate application. 
Read More

Dexphot Malware Hijacked 80K+ Devices to Mine Cryptocurrency

Friday, 29th November 2019

A cryptomining malware has infected at least 80k devicesand uses various tactics to evade detection. Microsoft is warning of malware,Dexphot, that has infected more than 80,000 machines, sucking up their CPUpower in order to mine cryptocurrency.

Researchers first discoveredDexphot in October 2018 and saw its activity peak during July. They said thatthe malware has a complex attack chain and also uses various methods to outwitdetection efforts, including an obfuscated script designed to check for antivirusproducts, and regularly-scheduled malware updatesRead More

Linux Webmin Servers Under Attack by Roboto P2P Botnet

Friday, 22nd November 2019

A newly-discovered peer-to-peer (P2P) botnet has beenfound targeting a remote code execution vulnerability in Linux Webmin servers.Vulnerable Linux Webmin serversare under active attack by a newly-discovered peer-to-peer (P2P) botnet, dubbedRoboto by researchers.

The botnet is targeting a remotecode-execution vulnerability (CVE-2019-15107) in Webmin, a web-based system configurationtool for Linux servers. CVE-2019-15107 was previously patched on Aug. 17 andcan be mitigated by updating to Webmin 1.930, said researchers with NetLab 360.

Read More

International Telecommunication Union (ITU) is organizing the Fifth ITU-ALERT - Applied learning for Emergency Response Teams (ALERT) international cyber drill for Africa Region, from 18th – 21st November 2019, Kampala Uganda

Monday, 18th November 2019

International Telecommunication Union (ITU)is organizing the Fifth ITU-ALERT - Applied learning for Emergency ResponseTeams (ALERT) international cyber drill for Africa Region, from 18th – 21stNovember 2019 that will be held in Kampala, Uganda, at the kind invitation ofUganda Communications Commission.

This event will be organized by theTelecommunication Development Bureau (BDT) of the InternationalTelecommunication Union (ITU), and hosted by Uganda Communications commission. Read More

Magento Warns E-Commerce Sites to Upgrade ASAP to Prevent Attacks

Wednesday, 13th November 2019
The popular e-commerce platform Magento is urging web administrators to install its latest security update in order to defend against malicious attacks in the wild that could exploit a critical remote code-execution vulnerability.