Due to the impact of the ongoing COVID-19 crisis today, many companies and organizations in the Philippines are already considering telecommuting or most commonly known as work from home as an alternate option to continue their day to day business operations. Rather than traveling to the office, the employee “travels” via telecommunication links, keeping in continue reading : SECURITY PRACTICES FOR REMOTE ACCESS IN TELECOMMUTING
A vulnerability was discovered in one of the famous content management system specifically on the Featured Articles menu parameters. CVE-2020-10243 has been assigned to this vulnerability affecting a wide range of joomla versions. It was reported last March 9, 2020 and can be exploited using SQL Injection attack. Joomla rated it as High impact and continue reading : Vulnerability on Joomla versions 1.7.0 – 3.9.15
The National Computer Emergency Response Team of the Philippines (CERT-PH) alerts all government agencies, private sectors, and all individuals to be aware of the malicious attack vectors that were made in order to take advantage of the ongoing Coronavirus (COVID-19) pandemic. Threat actors may send fraudulent emails that have malicious links or attachments which are continue reading : COVID-19 MALICIOUS CYBER ATTACK VECTORS AND SAFETY PRECAUTIONS
On January 14, 2020, Microsoft released its monthly security update as part of the Patch Tuesday updates for January 2020. The updates addressed notable vulnerabilities in the Windows Operating System. 1. CVE-2020-0601 The spoofing vulnerability, disclosed by US National Security Agency (NSA), exists in the way the default Windows cryptographic library, CryptoAPI (Crypt32.dll), validates Elliptic continue reading : Microsoft Latest Security Updates
All organizations and users who are using Mikrotik routers are urged to review and make sure that all patch releases are already applied to their devices. Patching your outdated Mikrotik routers and other devices’ versions will minimize any risks of getting injected with cryptojacking malware on your system. CERT-PH recommends assigning a personnel to monitor the official blog website continue reading : Mikrotik Vulnerability
A Remote Command Execution (RCE) vulnerability (CVE-2019-10149) in the open source Exim mail transfer agent (MTA) implemented in Unix-based mail servers was publicly disclosed. The vulnerability can be exploited through a malicious email sent to a vulnerable server, and injected commands will typically run as root. This is due to improper validation of the recipient continue reading : Exim Vulnerability (CVE-2019-10149)
The increasing pace of the possibilities provided by internet services has become an aide for businesses and opportunities to maximize the use of the internet. Our assets rely heavily on the use of the internet, the same field where hackers and cyber criminals rely on to enact their illicit deeds. As convenient and helpful the continue reading : Secure your digital assets from cyberattacks
When you post or send anything online, expect that someone has seen it and might even save it for his perusal. Nowadays, people’s idea of documenting themselves is evolving and the idea of recording your daily life thru social media has become a habit. It comes to the point that others become comfortable of sharing continue reading : YOU MIGHT BE AT RISK: Practices that lead to Sextortion
Since the start of 2018, Internet Fraud has been in the top of our Cybercrime Statistics Reports proving that it has become more and more prevalent. Internet fraud is the act of defrauding people of their money through internet services. This type of fraud can happen in a variety of ways. One of the growing continue reading : How is Social Media Fraud Orchestrated
The Department of Information and Communications Technology (DICT), through Secretary Rodolfo A Salalima and Assistant Secretary Allan S Cabanlong confirms that a global ransomware attack is currently in progress. The sophisticated ransomware, known as ‘Wanna Cry’ or ‘Wanna Decryptor’, exploits a vulnerability in Microsoft’s Windows operating system. This malware is designed to spread laterally on continue reading : Defending Against Ransomware Generally