Ken's Automated News Feed Aggregator
Article content continued. According to spokesman Ryan Foreman, the cyber defence agency says its launched procedures to have over 1,500 “malicious imitations” of federal government websites related to COVID-19 taken down. Most of these websites were r…
Continue ReadingSeveral vulnerabilities were discovered in BIND, a DNS server implementation. Package : bind9 Version : 1:9.9.5.dfsg-9+deb8u19 CVE ID : CVE-2020-8616 CVE-2020-8617 Several vulnerabilities were discovered in BIND, a DNS server implementation. CVE-2020-8…
Continue Reading# Exploit Title: Filetto 1.0 – ‘FEAT’ Denial of Service (PoC) # Date: 2020-05-13 # Found by: Alvaro J. Gene (Socket_0x03) # Vendor Homepage: http://www.utillyty.eu # Software Link: https://sourceforge.net/projects/filetto # Vulnerable Application: File…
Continue Readingis a critical IT security practice for scanning systems, networks and applications for vulnerabilities and security holes that could lead to breaches and exploits. Pen tests are often performed by third parties, but as these outside tests can be expens…
Continue ReadingOriginal release date: May 28, 2020 The National Security Agency (NSA) has released a cybersecurity advisory on Russian advanced persistent threat (APT) group Sandworm exploiting a vulnerability—CVE-2019-10149—in Exim Mail Transfer Agent (MTA) software…
Continue ReadingNSA warns that Russian hackers exploiting the Exim vulnerability (CVE-2019-10149) since at least last August. The APT hacker group linked with the attack is Sandworm Team. Sandworm Team is known to be active since 2009, and the group mainly targets Ukr…
Continue ReadingThe threat actor is using phishing emails with macro-laden Microsoft Office attachments, and the malware will only execute if the local operating system’s language matches the language used in the phishing email. The infection chain involves extracting…
Continue ReadingAs per report by Solution (Hardware Appliances, Virtual Appliances, Cloud-Based), Service (Professional and Managed), Organization Size (SMEs and Large Enterprises), Industry Vertical, and Region – Global Forecast to 2022″ , the WAF market size is expe…
Continue ReadingThe U.S. intended to “tarnish the image” of the DPRK with recent cyber-crime accusations, a statement published on North Korea’s Ministry of Foreign Affairs website said on Friday evening. The statement, attributed to a spokesperson for the “National C…
Continue ReadingThe Exim MTA vulnerability, initially reported by Qualys in May 2019, is currently being exploited in the wild. Recently, the US National Security Agency (NSA) announced that Sandworm actors (Russian hacker group) have been actively exploiting the Exim…
Continue Reading