Latest News Articles



--- TLP:WHITE ---

News

− German cyber agency warns threat situation is ‘higher than ever’

n its annual report, Germany’s federal cybersecurity office warned on Tuesday that ransomware, political hacking, and other cybersecurity threats facing the country are “higher than ever.”. The report said ongoing criminal activities were responsible for the threat level, alongside attacks linked to the Russian invasion of Ukraine — but it also warned that insufficient IT and software product quality was a contributing factor.

https://therecord.media/german-cyber-agency-warns-threat-situation-is-higher-than-ever/

Vulnerabilities

− NCSC Alert Critical Vulnerabilities in VMware Cloud Foundation Platform

VMware has released a software update that addresses CVE-2021-39144, a critical vulnerability in the VMware Cloud Foundation platform. The vulnerability is in the XStream open-source library that is used by VMware Cloud Foundation.

https://www.ncsc.gov.ie/pdfs/VMWare_CVE-2021-39144.pdf

− CISA, FBI warn healthcare organizations of Daixin ransomware

ang was behind the attack on OakBend Medical Center Federal agencies are warning of a threat group called Daixin Team that is using ransomware and data extortion tactics to target US healthcare organizations.

https://www.ic3.gov/Media/News/2022/221021.pdf

− Hackers Actively Exploiting Cisco AnyConnect and GIGABYTE Drivers Vulnerabilities

Cisco has warned of active exploitation attempts targeting a pair of two-year-old security flaws in the Cisco AnyConnect Secure Mobility Client for Windows. Tracked as CVE-2020-3153 (CVSS score: 6.5) and CVE-2020-3433 (CVSS score: 7.8), the vulnerabilities could enable local authenticated attackers to perform DLL hijacking and copy arbitrary files to system directories with elevated privileges.

https://thehackernews.com/2022/10/hackers-actively-exploiting-cisco.html

Community News

− Threat Landscape Report - The 10 Years Edition

In 2011 two things happened: CERT-EU was born and RSA, a renowned cybersecurity vendor, was hacked. If history is a great teacher, then we should definitely look back at the major cyber events that made the headlines in the ten years since 2011, since we were created ...

https://cert.europa.eu/publications/tlr-10-years/

--- TLP:WHITE ---