NCERT | National Computer Emergency Response Team Philippines

ESET Local Privilege Escalation Vulnerability (CVE-2021-37852)

Internet Security Company, ESET, has fixed the local privilege escalation in multiple ESET products for Windows. Through the coordination of Michael DePlante, a security researcher from Trend Micro’s Zero Day Initiative team, ESET became aware of the vulnerability and mitigated it by releasing a fixed product version. According to ESET, there are no existing exploits continue reading : ESET Local Privilege Escalation Vulnerability (CVE-2021-37852)

Earth Lusca Targets Organization including the Philippine Government

Based on a report issued by Trend Micro, malicious campaigns target organizations globally including the Philippine government. The adversary was dubbed as Earth Lusca, a financially motivated elusive threat actor based in China, that uses traditional social engineering such as spear phishing and watering holes. Telemetry data gathered by Trend Micro revealed that Earth Lusca continue reading : Earth Lusca Targets Organization including the Philippine Government

New Purple Fox Malware found in Malicious Telegram Messenger App

Security researchers have recently observed a malware distribution of Purple Fox Backdoor through trojanized installers of the Telegram messaging application. Based on the report of Minerva Labs (https://blog.minerva-labs.com/malicious-telegram-installer-drops-purple-fox-rootkit), this threat actor was able to leave most parts of the attack under the radar by separating the attack into several small files, most of which had continue reading : New Purple Fox Malware found in Malicious Telegram Messenger App

Apache Log4j Remote Code Execution (CVE-2021-44228)

A critical zero-day vulnerability in Apache Log4j2, a library used by millions for Java applications, that is being actively exploited in the wild was recently discovered that can allow a threat actor to gain system-level access to the vulnerable servers. Tracked as CVE-2021-42288, CERTS from different countries like New Zealand, Austria, and Germany have already continue reading : Apache Log4j Remote Code Execution (CVE-2021-44228)

PH among the targets of Chinese Hackers based on reports by Insikt Group

Recorded Future’s Insikt Group, a US-based private cybersecurity company, reported that Chinese state-sponsored hackers are currently targeting several Southeast Asian countries, specifically those with similar territorial claims or those involved in infrastructure development projects. The report mentioned the top five most targeted Southeast Asian countries were Malaysia, Indonesia, Vietnam, Myanmar, and the Philippines. ______________________________ A. continue reading : PH among the targets of Chinese Hackers based on reports by Insikt Group