Alerts

2019 and Beyond: The (Expanded) RSAC Advisory Board Weighs in on What’s Next: Pt. 2

Part two of RSA’s Conference Advisory Board look into the future tackles how approaches to cybersecurity must evolve to meet new emerging challenges.


Researchers Allege ‘Systemic’ Privacy, Security Flaws in Popular IoT Devices

A report found that a dozen connected devices are open to several security and privacy issues.


CERT/CC Reports Microsoft Exchange 2013 and Newer are Vulnerable to NTLM Relay Attacks

Original release date: January 28, 2019 The CERT Coordination Center (CERT/CC) has released information to address NTLM relay attacks affecting Microsoft Exchange 2013 and newer versions. A remote attacker could exploit this vulnerability to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review CERT/CC’s Vulnerability Note VU#465632 and apply the necessary workarounds. This product is provided subject to this Notification …
Read More »


2019 and Beyond: The (Expanded) RSAC Advisory Board Weighs in on What’s Next

Forward-thinking predictions for the year ahead from some of the cybersecurity industry’s wisest minds.


SB19-028: Vulnerability Summary for the Week of January 21, 2019

Original release date: January 28, 2019 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information. The vulnerabilities …
Read More »


Active Scans Target Vulnerable Cisco Routers for Remote Code-Execution

Cyberattackers are targeting a pair of just-patched vulnerabilities that allow remote unauthenticated information disclosure leading to remote code-execution.


WordPress Users Urged to Delete Zero-Day-Ridden Plugin

The development team of the vulnerable Total Donations plugin appears to have abandoned it, and did not respond to inquiries from researchers.


LabKey Vulnerabilities Threaten Medical Research Data

LabKey Server version 18.3.0-61806.763, released on January 16, patches all three issues, so users should update as soon as possible.


CISA Releases Blog on Emergency Directive

Original release date: January 24, 2019 The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Director Christopher Krebs, has released a blog, titled “Why CISA Issued Our First Emergency Directive,” to explain considerations in issuing Emergency Directive 19-01 on January 22, 2019. The directive requires Federal civilian agencies to take a series of immediate actions in response to a global Domain Name System (DNS) hijacking campaign. The National Cybersecurity and Communications Integration Center (NCCIC), part of …
Read More »


AA19-024A: DNS Infrastructure Hijacking Campaign

Original release date: January 24, 2019 Summary The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS) infrastructure hijacking campaign. Using compromised credentials, an attacker can modify the location to which an organization’s domain name resources resolve. This enables the attacker to redirect user traffic to attacker-controlled infrastructure and obtain valid encryption certificates for an organization’s domain names, enabling man-in-the-middle attacks. See the following …
Read More »