Latest News Articles



--- TLP:WHITE ---

News

− Accenture confirms hack after LockBit ransomware data leak threats

Accenture, a global IT consultancy giant has likely been hit by a ransomware cyberattack.

https://www.bleepingcomputer.com/news/security/accenture-confirms-hack-after-lockbit-ransomware-data-leak-threats/

− Examining threats to device security in the hybrid workplace

As offices reopen and hybrid working becomes a reality, new working patterns will expose employers to a familiar set of risks. However, this time the sheer number of employees shuttling back and forth between home, shared workspaces, customer locations and the office means a far greater potential for devices and data to end up in the wrong hands.

https://www.welivesecurity.com/2021/08/12/examining-threats-device-security-hybrid-workplace/

Vulnerabilities

− Microsoft Exchange ProxyShell Vulnerability

The NCSC has been made aware that threat actors are actively scanning for the Microsoft Exchange ProxyShell RCE vulnerability.

https://ncsc.gov.ie/pdfs/MS_Proxyshell_090821.pdf

− Microsoft Windows Print Spooler Point and Print allows installation of arbitrary queue-specific files

Overview Microsoft Windows allows for non-admin users to be able to install printer drivers via Point and Print. Printers installed via this technique also install queue-specific files, which can be arbitrary libraries to be loaded by the privileged Windows Print Spooler process. Description Microsoft Windows allows for users who lack administrative privileges to still be able to install printer drivers, which execute with SYSTEM privileges via the Print Spooler service.

https://kb.cert.org/vuls/id/131152

Community News

− Cyber Ireland National Conference October 2021

Cyber Ireland will be hosting their 1st annual Cyber Ireland Conference on 21st October 2021!

https://cyberireland.ie/wp-content/uploads/2021/08/Cyber-Ireland-National-Conference-2021-Flyer-1.pdf

− US CISA Releases new Cyber training guide

The Cybersecurity and Infrastructure Security Agency (CISA) released a new downloadable Cybersecurity Workforce Training Guide today to assist future and current cybersecurity and information technology ( IT) professionals chart a successful career path. This guide is a one-stop-shop for information and resources to help professionals start and/or advance their careers in cybersecurity through training.

https://www.cisa.gov/sites/default/files/publications/Cybersecurity%20Workforce%20Training%20Guide%207.28.21%20508c.pdf

− Kaseya's universal REvil decryption key leaked on a hacking forum

The universal decryption key for REvil's attack on Kaseya's customers has been leaked on hacking forums allowing researchers their first glimpse of the mysterious key. This is the latest in a series of ransomware decryption keys that have been released without payment.

https://www.bleepingcomputer.com/news/security/kaseyas-universal-revil-decryption-key-leaked-on-a-hacking-forum/

--- TLP:WHITE ---