Author: DEFENDEDGE
-
Massive Supply-Chain Cyberattack Breaches Several Airlines
The cyberattack on SITA, a nearly ubiquitous airline service provider, has compromised frequent-flyer data across many carriers. Read more
-
Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers
Researchers with Microsoft and FireEye found three new malware families, which they said are used by the threat group behind the SolarWinds attack. Read more
-
Update to Alert on Mitigating Microsoft Exchange Server Vulnerabilities
Original release date: March 4, 2021 CISA is aware of threat actors using open source tools to search for vulnerable Microsoft Exchange Servers and advises entities to investigate for signs of a compromise from at least September 1, 2020. CISA has updated the Alert on the Microsoft Exchange server vulnerabilities with additional detailed mitigations. CISA… Read more
-
Joint NSA and CISA Guidance on Strengthening Cyber Defense Through Protective DNS
Original release date: March 4, 2021 The National Security Agency (NSA) and CISA have released a Joint Cybersecurity Information (CSI) sheet with guidance on selecting a protective Domain Name System (PDNS) service as a key defense against malicious cyber activity. Protective DNS can greatly reduce the effectiveness of ransomware, phishing, botnet, and malware campaigns by… Read more
-
CISA Orders Federal Agencies to Patch Exchange Servers
Espionage attacks exploiting the just-patched remote code-execution security bugs in Microsoft Exchange servers are quickly spreading. Read more
-
Unpatched Bug in WiFi Mouse App Opens PCs to Attack
Wireless mouse-utility lacks proper authentication and opens Windows systems to attack. Read more
-
AA21-062A: Mitigate Microsoft Exchange Server Vulnerabilities
Original release date: March 3, 2021 Summary Cybersecurity and Infrastructure Security (CISA) partners have observed active exploitation of vulnerabilities in Microsoft Exchange Server products. Successful exploitation of these vulnerabilities allows an unauthenticated attacker to execute arbitrary code on vulnerable Exchange Servers, enabling the attacker to gain persistent system access, as well as access to files… Read more
-
CISA Issues Emergency Directive and Alert on Microsoft Exchange Vulnerabilities
Original release date: March 3, 2021 CISA has issued Emergency Directive (ED) 21-02 and Alert AA21-062 addressing critical vulnerabilities in Microsoft Exchange products. Successful exploitation of these vulnerabilities allows an attacker to access on-premises Exchange servers, enabling them to gain persistent system access and control of an enterprise network. CISA strongly recommends organizations examine their… Read more
-
Malicious Code Bombs Target Amazon, Lyft, Slack, Zillow
Attackers have weaponized code dependency confusion to target internal apps at tech giants. Read more
-
Microsoft Exchange Zero-Day Attackers Spy on U.S. Targets
Full dumps of email boxes, lateral movement and backdoors characterize sophisticated attacks on civil-society targets by a Chinese APT. Read more