Alert (AA21-110A) Exploitation of Pulse Connect Secure Vulnerabilities
us-cert.cisa.gov/ncas/alerts/aa21-110a The Cybersecurity and Infrastructure Security Agency (CISA) is aware of compromises affecting U.S. government agencies, critical infrastructure entities, and other private sector organizations by a cyber threat actoror actorsbeginning in June 2020 or earlier related to vulnerabilities in certain Ivanti Pulse Connect Secure products. Lisäksi:
CISA orders federal orgs to mitigate Pulse Secure VPN bug by Friday
www.bleepingcomputer.com/news/security/cisa-orders-federal-orgs-to-mitigate-pulse-secure-vpn-bug-by-friday/ The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a new emergency directive ordering federal agencies to mitigate an actively exploited vulnerability in Pulse Connect Secure (PCS) VPN appliances on their networks by Friday. Lisäksi:
FBI face recognition trawl finds Capitol rioter via his girlfriend’s Instagram
blog.malwarebytes.com/privacy-2/2021/04/fbi-face-recognition-trawl-finds-capitol-rioter-via-his-girlfriends-instagram/ Facial recognition tech is in the news again after the FBI discovered the identify of one of the Capitol rioters by using facial recognition software on his girlfriend’s Instagram posts. It may sound scary and invasive, but in truth, what’s happening isn’t particularly new.
Zero-day vulnerabilities in SonicWall email security are being actively exploited
www.zdnet.com/article/zero-day-vulnerabilities-in-sonicwall-email-security-are-being-exploited-in-the-wild/ SonicWall is urging customers to apply patches to resolve three zero-day vulnerabilities in its email security solution that are being actively exploited in the wild. Lisäksi:
www.bleepingcomputer.com/news/security/massive-qlocker-ransomware-attack-uses-7zip-to-encrypt-qnap-devices/. Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices. A massive ransomware campaign targeting QNAP devices worldwide is underway, and users are finding their files now stored in password-protected 7zip archives.
Russian intelligence agency SVR sets up dark web whistleblowing platform
therecord.media/russian-intelligence-agency-svr-sets-up-dark-web-whistleblowing-platform/ The SVR, Russia’s main intelligence service, has deployed a system similar to the SecureDrop whistleblowing platform to allow Russians living abroad to safely send anonymous tips via the Tor network about national security threats.
In epic hack, Signal developer turns the tables on forensics firm Cellebrite
arstechnica.com/information-technology/2021/04/in-epic-hack-signal-developer-turns-the-tables-on-forensics-firm-cellebrite/ For years, Israeli digital forensics firm Cellebrite has helped governments and police around the world break into confiscated mobile phones, mostly by exploiting vulnerabilities that went overlooked by device manufacturers. Now, Moxie Marlinspikethe brainchild behind the Signal messaging apphas turned the tables.