Latest News Articles



--- TLP:WHITE ---

News

− Russian Turla APT Group Deploying New Backdoor on Targeted Systems

State-sponsored hackers affiliated with Russia are behind a new series of intrusions using a previously undocumented implant to compromise systems in the U.S., Germany, and Afghanistan. Cisco Talos attributed the attacks to the Turla Advanced Persistent Threat (APT) group, coining the malware "TinyTurla" for its limited functionality and efficient coding style that allows it to go undetected.

https://blog.talosintelligence.com/2021/09/tinyturla.html

− ImmuniWeb Launches Free Tool for Identifying Unprotected Cloud Storage

Switzerland-based web and application security company ImmuniWeb on Tuesday announced the launch of a free online tool designed to help organizations identify unprotected cloud storage.

https://www.securityweek.com/immuniweb-launches-free-tool-identifying-unprotected-cloud-storage

− NSA, CISA share VPN security tips to defend against hackers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance for hardening the security of virtual private network (VPN) solutions.

https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/2791320/nsa-cisa-release-guidance-on-selecting-and-hardening-remote-access-vpns/

Vulnerabilities

− VMware Confirms In-the-Wild Exploitation of vCenter Server Vulnerability

VMware has confirmed that the recently patched vCenter Server vulnerability tracked as CVE-2021-22005 has been exploited in the wild, and some researchers say it has been chained with another flaw that was fixed in the same round of updates.

https://www.vmware.com/security/advisories/VMSA-2021-0020.html

− Conti Ransomware Alert

The US Cybersecurity and Infrastructure Security Agency (CISA) released an alert in relation to the increasing number of Conti Ransomware cases that they have observed. CISA and the FBI have observed more than 400 attacks on U.S. and international organisations.

https://www.ncsc.gov.ie/pdfs/Conti_270921.pdf

Community News

− European Cyber Security Month 2021

The aim of Cyber Security Month is to raise awareness of cybersecurity threats, promote cyber security among citizens and organisations; and provide resources to protect themselves online, through education and sharing of good practices.

https://www.ncsc.gov.ie/ecsm21/

--- TLP:WHITE ---