Latest News Articles



--- TLP:WHITE ---

News

− CISA Issues Ransomware Defense and Response Guidance

The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has released a list of suggestions to prevent and respond to these sorts of attacks.

https://us-cert.cisa.gov/ncas/current-activity/2021/08/18/cisa-provides-recommendations-protecting-information-ransomware

Vulnerabilities

− Fortinet Bug Allows Firewall Takeovers

An OS command injection vulnerability in FortiWeb's management interface may allow a remote authenticated administrator to execute arbitrary commands on the system via the SAML server configuration page. Their advisory contains mitigation measures and workarounds. It is advisable to restrict access to any management panels from outside the network.

https://www.fortiguard.com/psirt/FG-IR-21-116

− Crimes of Opportunity: Increasing Frequency of Low Sophistication Operational Technology Compromises

Attacks on control processes supported by operational technology (OT) are often perceived as necessarily complex. Mandiant Threat Intelligence has observed simpler attacks, where actors with varying levels of skill and resources use common IT tools and techniques to gain access to and interact with exposed OT systems.

https://www.fireeye.com/blog/threat-research/2021/05/increasing-low-sophistication-operational-technology-compromises.html

Community News

− European Cybersecurity Challenge: Team Ireland Selection

The European Cybersecurity Challenge takes place in Prague to network and collaborate and finally compete against each other. Contestants will be challenged in solving security related tasks from domains such as web security, mobile security, crypto puzzles, reverse engineering and forensics and in the process collect points for solving them. Team Ireland Selection will be on 28th August 2021 for Junior and Senior teams.

https://www.cybersecuritychallenge.ie/

--- TLP:WHITE ---