Microsoft has released its monthly security update for the month of April addressing a collection of vulnerabilities, including five (5) zero-day flaws and four (4) additional Microsoft Exchange vulnerabilities. Minimal information is given for the zero-day vulnerabilities, but successful exploitations could allow threat actors an elevation of privilege, denial of service (DoS) attacks, and information continue reading : Microsoft April 2021 Security Update

APKPure, one of the largest and popular alternative app stores that contains third-party games and software catalogs for the Android OS, was discovered to be infected with malware which allows malicious threat actors to distribute Trojans and malwares to Android devices. APKPure version 3.17.18 was discovered to have been tampered and tweaked in attempts to continue reading : Compromised APKPure Client to Deliver Malware

The Joker malware was recently found in ten (10) mobile applications distributed via the official Android store for Huawei Android devices, AppGallery. The malicious components contained a line of codes that connects to the malware’s command and control (C2) server to receive configurations and additional components. More than 500,000 Huawei users are said to have continue reading : Joker Malware Found in Huawei Android App Store

Three security vulnerabilities in the FortiOS used in Fortinet SSL VPN are currently being observed to be exploited by advanced persistent threat (APT) actors. Exploitation of the vulnerabilities, CVE-2018-13379, CVE-2019-5591, and CVE-2020-12812, may provide threat actors to gain a foothold within vulnerable networks before moving laterally and carrying out reconnaissance activity. The Federal Bureau of continue reading : Multiple FortiOS Vulnerabilities (CVE-2018-13379, CVE-2019-5591, CVE-2020-12812)

Apple addressed an iOS zero-day bug actively exploited in the wild and affecting iPhone, iPad, iPod, and Apple Watch devices. The flaw could be exploited to allow attackers to launch universal cross-site scripting attacks after tricking targets into opening maliciously crafted web content on their devices. A. Nature of the Vulnerability The vulnerability was tracked continue reading : Apple iOS Zero-day Vulnerability (CVE-2021-1879)

Cisco has addressed several vulnerabilities impacting versions of Cisco Jabber client software for Windows, macOS, Android, and iOS, including a critical arbitrary program execution vulnerability. Cisco Jabber is a web conferencing and instant messaging app that allows users to send messages via the Extensible Messaging and Presence Protocol (XMPP). Successful exploitation could enable remote attackers continue reading : Cisco Jabber Multiple Vulnerabilities

QNAP warns customers of ongoing attacks targeting QNAP NAS (network-attached storage) devices.  QNAP has received multiple user reports of hackers attempting to log in to QNAP devices using brute-force attacks, where hackers would try every possible password combination of a QNAP device user account. ___________________________________ A. Nature of the Attack Threat actors are reported to continue reading : Brute-force Attacks on QNAP’s NAS Devices

The OpenSSL Project addresses two high-severity vulnerabilities in OpenSSL Products, a commonly used software library for building networking applications and servers that need to establish secure communications, including one related to verifying a certificate chain and one that can trigger a DoS condition. ___________________________________ A. Nature of the Vulnerabilities The following vulnerabilities were tracked as: continue reading : OpenSSL Vulnerabilities (CVE-2021-3449 and CVE-2021-3450)

Microsoft has fixed a vulnerability in the PsExec utility that allows local users to gain elevated privileges on Windows devices. PsExec is a Sysinternals utility designed to allow administrators to perform various activities on remote computers, such as launching executables and displaying the output on the local computer or creating reverse shells. Threat actors commonly continue reading : PSExec Privilege Escalation Vulnerability (CVE-2021-1733)

F5 Networks has published patches to address vulnerabilities in its BIG-IP products, four of which were rated as critical in severity. According to the security advisory, the following vulnerability affects BIG-IP applications used in enterprise-grade and modular software suites designed for data and app delivery, load balancing, traffic management, and other business functions. The vulnerabilities continue reading : F5 BIG-IP, BIG-IQ, and BIG-IP Advanced WAF/ASM Vulnerabilities