FortiSIEM default SSH key vulnerability
A use of hard-coded cryptographic key vulnerability in FortiSIEM may allow a remote unauthenticated attacker to obtain SSH access to
Read more
Author: Jason Davies
NotRobin backdoor targets Citrix/NetScaler appliances
NotRobin is a backdoor that targets Citrix/NetScaler appliances. NotRobin is spread over the internet via exploitation of a Remote Code Execution (RCE) vulnerability in
Read more
Windows CryptoAPI Spoofing Vulnerability [CVE-2020-0601]
The NSA has discovered a critical vulnerability (CVE-2020-0601) affecting Microsoft Windows cryptographic functionality. The certificate validation vulnerability allows an attacker
Read more
Fake Bank of America Domain Names
We have been made aware of some fake domain names that target the finance and insurance sector. The domain names
Read more
Microsoft Windows WIA Junction Privilege Escalation Vulnerability [CVE-2020-0635]
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the
Read more
Android FakeToken Malware
FakeToken is an Android malware that pretends to be a mobile token generator, but actually intercepts and steals SMS messages
Read more
Albany Airport Pays Off Sodinokibi Ransomware
The CEO of Albany Airport told the Times Union that the ransomware incident happened in the early hours of December
Read more
Security issues in Citrix products reported by researchers [CVE-2019-19781]
CVE number – CVE-2019-19781 Positive Technologies have reported a security issue that affects Citrix products. The flaw could give attackers
Read more
Sophos Central Firewall Manager – CFM 17.1.1 MR1 Released
Sophos have just released CFM 17.1.1 MR1 for Sophos Central Firewall Manager. Issues Resolved NCCC-7009 [SCFM] Client unable to schedule
Read more
SNAKE Ransomware targets all connected devices
Thre is a new ransomware on the scene called SNAKE, it is targeting users networks and aiming to encrypt all
Read more