Latest News Articles



--- TLP:WHITE ---

News

− Greek natural gas operator suffers ransomware-related data breach

Greece's largest natural gas distributor DESFA confirmed on Saturday that they suffered a limited scope data breach and IT system outage following a cyberattack

https://heimdalsecurity.com/blog/desfa-suffers-cyberattack-ragnar-locker-ransomware-claims-responsibility/

- Microsoft: Russian malware hijacks ADFS to log in as anyone in Windows

Microsoft has discovered a new malware used by the Russian hacker group APT29 (a.k.a. NOBELIUM, Cozy Bear) that enables authentication as anyone in a compromised network.

https://www.microsoft.com/security/blog/2022/08/24/magicweb-nobeliums-post-compromise-trick-to-authenticate-as-anyone/

Vulnerabilities

− Over 80,000 exploitable Hikvision cameras exposed online

Security researchers have discovered over 80,000 Hikvision cameras vulnerable to a critical command injection flaw that's easily exploitable via specially crafted messages sent to the vulnerable web server.

https://www.bleepingcomputer.com/news/security/over-80-000-exploitable-hikvision-cameras-exposed-online/

- Remote Command Execution via Github import

Gitlab have released details of a critical remote command execution vulnerability which affects GitLab Community Edition (CE) and Enterprise Edition (EE).

https://www.ncsc.gov.ie/pdfs/GitlabVulnerability-26082022.pdf

Community News

- The Cyber Ireland National Conference is on 5th October 2022

The Cyber Ireland National Conference provides a unique opportunity to bring the Irish cyber security community together to showcase the best of our cluster and discuss the cyber security opportunities and challenges we face.

https://conference.cyberireland.ie

--- TLP:WHITE ---