Severity: HIGH What is affected: All versions of Windows Server with the Domain Name System (DNS) role enabled Description: The Cybersecurity and Infrastructure Security Agency (CISA) has released Emergency Directive 20-03 addressing a critical vulnerability—CVE-2020-1350—affecting all versions of Windows Server…
Read MoreWhen most of us think secure access, we might think of a password or a pin, a passphrase or even a set of numbers and letters. We use these to log on to our computer or phone, email, online banking…
Read MoreSeverity: HIGH What is affected: A privilege escalation vulnerability in VMware Fusion, VMRC for Mac and Horizon Client for Mac was privately reported to VMware. Updates are available to address this vulnerability. Description: VMware has released security updates to address a vulnerability in VMware…
Read MoreSeverity: CRITICAL What is affected: This issue is fixed in PAN-OS 8.1.15, PAN-OS 9.0.9, PAN-OS 9.1.3, and all later versions. Description: Palo Alto Networks has released security updates to address a vulnerability affecting the use of Security Assertion Markup Language…
Read MoreThe Australian Government is currently aware of and responding to, a sustained targeting of Australian governments and companies by a sophisticated state-based actor. The title ‘Copy-paste compromises’ is derived from the actor’s heavy use of proof-of-concept exploit code, web shells…
Read MoreSummary X-Force has identified a new squatting campaign used by threat actors to target the finance and insurance sector. The campaign has a global scope assumingly luring users into giving away their login credentials. Threat Type Squatting Domain, Phishing Domain,…
Read MoreCybersecurity and Infrastructure Security Agency (CISA) Warns Against COVID-19 Cyber Scams and Provides Security Tips Avoid clicking on links in unsolicited emails and be wary of email attachments. Review CISA Insights on Risk Management for COVID-19 for more information. Why Coronavirus? There’s…
Read MoreThe Australian privacy regulator filed a lawsuit against Facebook, accusing the social media giant of sharing the personal details of more than 300,000 people with political consultant Cambridge Analytica without their knowledge. In the Federal Court lawsuit, the Australian Information…
Read MoreSummary Another report on the activities of the North Korean-based threat group, Kimsuky, has been published by Yoroi ZLab. A previous report was covered in a collection that is available from the Linked Collections section. Threat Type Malware, APT,…
Read More