Ken's Automated News Feed Aggregator
The mobile version of Valorant is set to release in Summer 2020, anything before that should be considered malware. In October 2019, Riot Games announced the launch of a new game named for June 2020 to be available on Microsoft Windows. A 2-month beta …
Continue Readingis a critical IT security practice for scanning systems, networks and applications for vulnerabilities and security holes that could lead to breaches and exploits. Pen tests are often performed by third parties, but as these outside tests can be expens…
Continue ReadingThe National Security Agency has identified Russian military cyber actors – part of the General Staff Main Intelligence Directorate’s (GRU) Main Center for Special Technologies (GTsST) – have exploited a vulnerability in Exim mail transfer agent (MTA) …
Continue ReadingNSA warns that Russian hackers exploiting the Exim vulnerability (CVE-2019-10149) since at least last August. The APT hacker group linked with the attack is Sandworm Team. Sandworm Team is known to be active since 2009, and the group mainly targets Ukr…
Continue ReadingThe threat actor is using phishing emails with macro-laden Microsoft Office attachments, and the malware will only execute if the local operating system’s language matches the language used in the phishing email. The infection chain involves extracting…
Continue ReadingThe Exim MTA vulnerability, initially reported by Qualys in May 2019, is currently being exploited in the wild. Recently, the US National Security Agency (NSA) announced that Sandworm actors (Russian hacker group) have been actively exploiting the Exim…
Continue ReadingExploit availability: No Description. CWE-200 – Information Exposure The vulnerability allows a remote attacker to gain access to potentially sensitive information. The vulnerability exists due in native-to-JS bridging implementation that requires a un…
Continue ReadingSix internal servers that Cisco uses to support its virtual networking service were compromised earlier this month after the company failed to patch two SaltStack zero day vulnerabilities, according to a
sent to customers this week. See Also: Buyers G…
Continue ReadingNSA. The National Security Agency has identified a vulnerability that Russian cyber actors take advantage of to attack mail transfer networks. Sandworm Team, a Russian military group, has exploited the CVE-2019-10149 vulnerability found in the Exim sof…
Continue ReadingSuccessful women in the tech trenches share their insights and tackle subjects ranging from how to search out a strong mentor to how to be one — from how to advance in a large company to how to start your own firm.
Switzerland this week launched a pi…
Continue Reading