Latest News Articles



--- TLP:WHITE ---

News

− Ransomware: Suspected REvil ransomware affiliates arrested

Suspected of about 7,000 infections, the arrested alleged affiliates asked for more than €200 million in ransom.

https://www.zdnet.com/article/ransomware-suspected-revil-ransomware-affiliates-arrested

Vulnerabilities

− Many Healthcare, OT Systems Exposed to Attacks by NUCLEUS:13 Vulnerabilities

A series of 13 vulnerabilities identified in the Nucleus TCP/IP stack could be exploited to execute code remotely, cause a denial of service condition, or to obtain sensitive information, enterprise device security firm Forescout warns.

https://www.forescout.com/resources/nucleus13-research-report-dissecting-the-nucleus-tcpip-stack/

− ICS Patch Tuesday: Siemens and Schneider Electric Address Over 50 Security Flaws

Industrial giants Siemens and Schneider Electric have released a total of 20 Patch Tuesday advisories to address more than 50 vulnerabilities, including those in Nucleus TCP/IP, affecting their products.

https://www.securityweek.com/ics-patch-tuesday-siemens-and-schneider-electric-address-over-50-vulnerabilities-0

− Russian Cybercrime Group Exploits SolarWinds Serv-U Vulnerability

The Russia-linked 'Evil Corp' cybercrime group has been exploiting a vulnerability in SolarWinds Serv-U for initial infection, cybersecurity and risk mitigation firm NCC Group reports.

https://research.nccgroup.com/2021/11/08/ta505-exploits-solarwinds-serv-u-vulnerability-cve-2021-35211-for-initial-access/

− Microsoft November 2021 Security Updates

Microsoft has released details of 55 security patches for software, including patches for some zero-day vulnerabilities, which have been actively exploited in the wild. System administrators should refer to Microsoft documentation on these vulnerabilities and apply patches as appropriate. The NCSC would like to highlight two of these vulnerabilities as they have been actively exploited in the wild and it is believed that more widespread exploitation will occur in the near future.

https://www.ncsc.gov.ie/pdfs/cve-2021-42321.pdf

Community News

− IRISSCON 2021- IRISSCERT Cyber Crime Conference

The IRISSCERT Cyber Crime Conference (IRISSCON) will be held this year on Thursday the 18th of November 2021 in the The Aviva Stadium, Landsdowne Road, Ballsbridge, Dublin 4, Ireland. This is an all-day conference which focuses on providing attendees with an overview of the current cyber threats facing businesses in Ireland and throughout the world and what they can do to help deal with those threats.

https://www.iriss.ie/IRISSCON.html

NCSC Site update: New guidance page

Our new guidance page contains our documents providing general advice to mitigate risk and on best practices. Documents will be updated and new material added as risks emerge. We hope you find it useful.

https://www.ncsc.gov.ie/guidance/

--- TLP:WHITE ---