Remote Execution vulnerability in windows
A security feature bypass vulnerability in Windows NT LAN Manager (NTLM) that was addressed by Microsoft as part of its monthly Patch Tuesday updates earlier this month. The flaw, tracked…
RDP servers abused with DDoS attack
Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to bounce and amplify junk traffic as part of DDoS attacks, security firm Netscout published. Not all RDP servers can…
Posted inDNS
DNS Attacks into limelight again
DNS infrastructure always remains an attractive target for cyber attackers and some recent targeted attacks on DNS highlight the increasingly sophisticated attack techniques used by hackers. New ways Attackers often…
Windows Zero Logon Enforcement
By Feb 2021 Patch Tuesday Microsoft will allow Domain Controller “enforcement mode” by default to handle CVE-2020-1472. Microsoft is having issues when it arrives to providers that haven’t still up-to-date…
Windows Finger Command Abused
Attackers are using the normally harmless Windows Finger command to download and install a malicious backdoor on victims' devices. The 'Finger' command is a utility that originated in Linux/Unix/Windows operating…
Posted incloudsecurity
Winnti ..APT 41 in action
A series of attacks by a threat actor of Chinese origin that has targeted organizations in Russia and Hong Kong with malware including a previously undocumented backdoor. APT used LNK…
Posted incybersecurity Network Securtiy Security
Vulnerability in BIG IP F5 CVE 2020-27716
The security flaw was discovered by a researcher , certain versions of BIG-IP Access Policy Manager (APM), a secure access solution that simplifies and centralizes access to applications, APIs and…
2021 1st Patch Tuesday ..A Bug in a Bug blocker
The first Patch Tuesday security bulletin for 2021 from Microsoft includes fixes for one bug under active attack, possibly linked to the massive SolarWinds hacks. Microsoft addressed 10 critical bugs,…