Remote Code Execution Vulnerability in Sophos Firewall (CVE-2022-1040)

A British-based security provider, Sophos, has addressed a critical vulnerability in Sophos Firewall product after security researchers responsibly disclosed it through Sophos bug bounty program. All Sophos Firewall prior to versions 18.5 MR3 (18.5.3) are affected by the security flaw, which users/administrators should already get the hotfixes automatically by default. ______________________________ A. Nature of the continue reading : Remote Code Execution Vulnerability in Sophos Firewall (CVE-2022-1040)

ESET Local Privilege Escalation Vulnerability (CVE-2021-37852)

Internet Security Company, ESET, has fixed the local privilege escalation in multiple ESET products for Windows. Through the coordination of Michael DePlante, a security researcher from Trend Micro’s Zero Day Initiative team, ESET became aware of the vulnerability and mitigated it by releasing a fixed product version.  According to ESET, there are no existing exploits continue reading : ESET Local Privilege Escalation Vulnerability (CVE-2021-37852)

Earth Lusca Targets Organization including the Philippine Government

Based on a report issued by Trend Micro, malicious campaigns target organizations globally including the Philippine government. The adversary was dubbed as Earth Lusca, a financially motivated elusive threat actor based in China, that uses traditional social engineering such as spear phishing and watering holes. Telemetry data gathered by Trend Micro revealed that Earth Lusca continue reading : Earth Lusca Targets Organization including the Philippine Government