Microsoft April 2021 Security Update

Microsoft has released its monthly security update for the month of April addressing a collection of vulnerabilities, including five (5) zero-day flaws and four (4) additional Microsoft Exchange vulnerabilities. Minimal information is given for the zero-day vulnerabilities, but successful exploitations could allow threat actors an elevation of privilege, denial of service (DoS) attacks, and information continue reading : Microsoft April 2021 Security Update

Multiple FortiOS Vulnerabilities (CVE-2018-13379, CVE-2019-5591, CVE-2020-12812)

Three security vulnerabilities in the FortiOS used in Fortinet SSL VPN are currently being observed to be exploited by advanced persistent threat (APT) actors. Exploitation of the vulnerabilities, CVE-2018-13379, CVE-2019-5591, and CVE-2020-12812, may provide threat actors to gain a foothold within vulnerable networks before moving laterally and carrying out reconnaissance activity. The Federal Bureau of continue reading : Multiple FortiOS Vulnerabilities (CVE-2018-13379, CVE-2019-5591, CVE-2020-12812)

Cisco Jabber Multiple Vulnerabilities

Cisco has addressed several vulnerabilities impacting versions of Cisco Jabber client software for Windows, macOS, Android, and iOS, including a critical arbitrary program execution vulnerability. Cisco Jabber is a web conferencing and instant messaging app that allows users to send messages via the Extensible Messaging and Presence Protocol (XMPP). Successful exploitation could enable remote attackers continue reading : Cisco Jabber Multiple Vulnerabilities

Brute-force Attacks on QNAP’s NAS Devices

QNAP warns customers of ongoing attacks targeting QNAP NAS (network-attached storage) devices.  QNAP has received multiple user reports of hackers attempting to log in to QNAP devices using brute-force attacks, where hackers would try every possible password combination of a QNAP device user account. ___________________________________ A. Nature of the Attack Threat actors are reported to continue reading : Brute-force Attacks on QNAP’s NAS Devices

OpenSSL Vulnerabilities (CVE-2021-3449 and CVE-2021-3450)

The OpenSSL Project addresses two high-severity vulnerabilities in OpenSSL Products, a commonly used software library for building networking applications and servers that need to establish secure communications, including one related to verifying a certificate chain and one that can trigger a DoS condition. ___________________________________ A. Nature of the Vulnerabilities The following vulnerabilities were tracked as: continue reading : OpenSSL Vulnerabilities (CVE-2021-3449 and CVE-2021-3450)

PSExec Privilege Escalation Vulnerability (CVE-2021-1733)

Microsoft has fixed a vulnerability in the PsExec utility that allows local users to gain elevated privileges on Windows devices. PsExec is a Sysinternals utility designed to allow administrators to perform various activities on remote computers, such as launching executables and displaying the output on the local computer or creating reverse shells. Threat actors commonly continue reading : PSExec Privilege Escalation Vulnerability (CVE-2021-1733)

F5 BIG-IP, BIG-IQ, and BIG-IP Advanced WAF/ASM Vulnerabilities

F5 Networks has published patches to address vulnerabilities in its BIG-IP products, four of which were rated as critical in severity. According to the security advisory, the following vulnerability affects BIG-IP applications used in enterprise-grade and modular software suites designed for data and app delivery, load balancing, traffic management, and other business functions. The vulnerabilities continue reading : F5 BIG-IP, BIG-IQ, and BIG-IP Advanced WAF/ASM Vulnerabilities