Vulnerability & Threat Management

15 03, 2019

Cisco NX-OS and FXOS: 33 New Vulnerabilities in One Week

By |2019-03-15T12:46:38-07:00March 15th, 2019|Vulnerability Assessment|Comments Off on Cisco NX-OS and FXOS: 33 New Vulnerabilities in One Week

Over the past week, we’ve seen Cisco publish a number of security advisories covering 29 vulnerabilities which affect Cisco NX-OS and four vulnerabilities which affect FXOS. Although there are not yet any reported active attacks leveraging these vulnerabilities, it’s crucial to be aware if any of these vulnerabilities exist within your network. What Risks do [...]

8 03, 2019

Google Reveals Rare macOS Zero-Day Vulnerability, BuggyCow

By |2019-03-08T12:52:07-07:00March 8th, 2019|Threat Intelligence|Comments Off on Google Reveals Rare macOS Zero-Day Vulnerability, BuggyCow

On November 30, 2018, Google’s Project Zero researchers discovered BuggyCow, a high-severity security flaw in the macOS kernel. They gave Apple a 90-day deadline to patch the issue: a deadline that, in this instance, was missed. As a direct result of Apple’s inaction, Google’s team revealed details about the flaw and posted a proof-of-concept on March [...]

30 01, 2019

Kuwait Oil Company Spreadsheet Delivering OmniRAT to OT Networks

By |2019-01-31T08:10:02-07:00January 30th, 2019|Threat Intelligence|Comments Off on Kuwait Oil Company Spreadsheet Delivering OmniRAT to OT Networks

A weaponized Excel file titled “Kuwait Oil Company Business Profile” breathes new life into an old vulnerability, raising concern for unsuspecting OT networks

18 01, 2019

Juniper Vulnerabilities Missed by a Number of Popular Scanners

By |2019-01-23T01:26:28-07:00January 18th, 2019|Vulnerability Assessment|Comments Off on Juniper Vulnerabilities Missed by a Number of Popular Scanners

Vulnerabilities detailed in Juniper’s latest bulletin weren’t picked up quickly enough by some major scanners and the NVD. Here's What Happened When Juniper Published its Bulletin On January 9, Juniper published its scheduled security bulletin which detailed 18 fixes that mostly related to JunOS, the popular enterprise-grade operating system used for Juniper's routing, switching and [...]

28 12, 2018

OT Threat Shamoon Returns with its Biggest Attack Yet

By |2019-01-03T10:31:24-07:00December 28th, 2018|Threat Intelligence|Comments Off on OT Threat Shamoon Returns with its Biggest Attack Yet

Notorious OT threat Shamoon returned with its third iteration in December, wiping the disks of hundreds of computers in an attack that started at oil giant Saipem. Shamoon 3: Here's What Happened Over the last 7 years, the notoriety of disk-wiping malware "Shamoon" (also known as "Disttrack") has grown. It has been implicated in three [...]

7 12, 2018

Zero-Day Attack on Russia Prompts OOB Patches

By |2019-03-08T12:58:41-07:00December 7th, 2018|Threat Intelligence|Comments Off on Zero-Day Attack on Russia Prompts OOB Patches

A targeted zero-day attack on Russia centered around a bug in Adobe Flash Player, but carried on the back of a malicious “mule” document, prompting both Adobe and Microsoft to release patches. The Zero-Day Attack on Russia: What Happened? In the early hours of November 29, 2018, a professional questionnaire issued by a Russian medical [...]

8 11, 2018

Bleedingbit Vulnerabilities Could Affect Enterprises Worldwide

By |2018-11-08T16:28:12-07:00November 8th, 2018|Vulnerability & Threat Management|Comments Off on Bleedingbit Vulnerabilities Could Affect Enterprises Worldwide

On November 1, 2018, researchers from Armis revealed two severe vulnerabilities known as Bleedingbit which could be used to carry out remote code execution attacks on enterprise firms worldwide. The Bleedingbit vulnerabilities impact Bluetooth low-energy chips built by Texas Instruments (TI) and are used in millions of Cisco and Aruba wireless access points (AP). Although [...]

16 10, 2018

Foreshadow Vulnerabilities Impact Siemens Products

By |2018-10-23T14:26:14-07:00October 16th, 2018|Vulnerability & Threat Management|Comments Off on Foreshadow Vulnerabilities Impact Siemens Products

Foreshadow and its derivatives, which allow unintended reads of the most isolated and secure microprocessor memory, are as ubiquitous as modern Intel chips. Operational technology (OT) systems, including many in the Siemens industrial and automation portfolios, incorporate the vulnerable chips. Foreshadow Vulnerabilities and Timeline On August 14, 2018, Intel took part in the coordinated disclosure [...]