This is a very serious leak as VPN (Virtual Private Network) username and passwords could undoubtedly allow the bad actors to access a network to perform all manner of activities including stealing date (data exfiltration), install hidden malware or...
Microsoft has released an out-of-band security update for a serious and actively used number of exploits on Microsoft Exchange. They named it Hafnium. The following versions of Exchange Server are affected: Exchange Server 2013 Exchange Server 2016...
Episode 1 – Series 1 – Anatomy Of A Phishing Attack
Here is a good presentation from SANS putting things into perspective. The slides are here .
Late last year Travelex, the currency exchange company suffered a major disruption in its operation after a ransomware attack. I wrote about this story at the time. It now appears a settlement has been reached with the bad actors. A report by...
Just before the turn of the year, Travelex, the foreign currency exchange service suspended their online services and took their systems offline after “a software virus was discovered”. They put out the following notice which is still...
The US-CERT has pushed out an advisory yesterday to warn customers of a potential cyber attack following the heightened geopolitics. You will need to review the potential attack framework and the accompanying recommendations listed further down the...
Ransomware attacks are often seen as just nuisance when you have a good backup. However it is a disaster for many businesses when you have no fallback. Remember a ransomware is a monster with two heads. One, it denies you access your data. Two, what...
DDE or Dynamic Data Exchange is a protocol that establishes how application interact and send messages to share data through shared memory. The bad guys unfortunately were leveraging a loophole to exploit this by using a booby-trapped document...
Driving back home, I asked myself, where will ransomware attacks takes us next? I then read this article on Ars Technica. It is chilling but not far fetched to imagine a whole national grid being taken hostage. In the security community we...