Tenable Research Advisory: AXIS Camera App Malicious Package Distribution Weakness
April 12, 2018Tenable Research recently audited an AXIS M3044-V network camera and learned that AXIS has introduced an application platform to their cameras. The camera even came with an app pre-installed: AXIS Vid...
Proof of Concept (and Patch) for Critical Cisco IOS Vulnerability: CVE-2018-0171
April 3, 2018Embedi, a security firm, has discovered a major security flaw in the Cisco Smart Install code. According to Embedi and Cisco, “A vulnerability in the Smart Install feature of Cisco IOS Software ...
Critical Drupal Core Vulnerability: What You Need to Know
March 29, 2018Drupal is popular, free and open-source content management software. On March 28, the Drupal security team released patches for CVE-2018-7600, an unauthenticated remote code execution vulnerability in...
SamSam Ransomware: How to Identify and Mitigate the Risk
March 28, 2018SamSam ransomware, which hit the city of Atlanta's systems in late March 2018, continues to be a threat. The most recent iteration leverages brute force remote desktop protocol (RDP) as an attack vect...
AMD Flaws Acknowledged
March 21, 2018CTS-Labs published several AMD flaws over a week ago. For those of us who read vulnerability disclosures regularly, this particular disclosure was curious. Not only was the branded website bereft of a...
Slingshot Malware Uses IoT Device in Targeted Attacks
March 19, 2018A new APT malware attack has been discovered by Kaspersky Lab. The malware named Slingshot, due to a string in one of the hijacked system DLLs, is a sophisticated attack that leads to a nasty rootkit....
Tenable Research Advisory: Micro Focus Operations Orchestration, Remote Denial-of-Service (DoS) Vulnerability
March 15, 2018Tenable Research just released an advisory for an information disclosure and denial-of-service vulnerability in Micro Focus Operations Orchestration software. This post provides further context arou...
Exim Buffer Overflow RCE Vulnerability (CVE-2018-6789) – What You Need to Know
March 7, 2018On February 10, the Unix-based email server Exim released an update to address a heap buffer overflow vulnerability that can be used by an unauthenticated attacker to remotely execute arbitrary code. ...
Identifying Systems Affected by Cisco ASA Critical Vulnerability (CVE-2018-0101)
February 6, 2018On January 29, Cisco released an advisory for a critical vulnerability in their Adaptive Security Appliance (ASA) software. The critical flaw, assigned CVE-2018-0101, has a CVSS score of 10.0 and coul...
Ploutus-D ATM Malware Reported in U.S.
February 1, 2018Ploutus-D is malware used for ATM jackpotting. It was discovered in Mexico in 2013, and is now getting reported as reaching the U.S. by Krebs on Security. This attack has been analysed by FireEye in 2...
Detecting SambaCry CVE-2017-7494
May 26, 2017We’ve seen several critical vulnerabilities lately. First there was WannaCry, and then WannaCry 2.0 (EternalRocks), and now do we have WannaCry 3.0? Well, not really. But a new seven-year-old remote c...
WannaCry 2.0: Detect and Patch EternalRocks Vulnerabilities Now
May 23, 2017A new network worm dubbed EternalRocks is making the news this week as the successor to the WannaCry ransomware. EternalRocks leverages some of the same vulnerabilities and exploit tools as WannaCry b...