Cisco Patches Two Dangerous Zero-Day Vulnerabilities
The vulnerabilities, one of which was rated critical and one of which was rated highly severe, affect Cisco IOS XE software. Continue reading Cisco Patches Two Dangerous Zero-Day Vulnerabilities
Category Archives: Fox IT
(Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise
Administrators of Citrix NetScaler ADC and Gateway appliances should check for evidence of installed webshells even if they implemented fixes for CVE-2023-3519 quickly: A recent internet scan by Fox-IT researchers has revealed over 1,800 backdoored Net… Continue reading (Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise
(Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise
Administrators of Citrix NetScaler ADC and Gateway appliances should check for evidence of installed webshells even if they implemented fixes for CVE-2023-3519 quickly: A recent internet scan by Fox-IT researchers has revealed over 1,800 backdoored Net… Continue reading (Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise
Dissect: Open-source framework for collecting, analyzing forensic data
A game changer in cyber incident response, the Dissect framework enables data acquisition on thousands of systems within hours, regardless of the nature and size of the IT environment to be investigated after an attack. Dissect framework development Fo… Continue reading Dissect: Open-source framework for collecting, analyzing forensic data
Log4Shell update: Attack surface, attacks in the wild, mitigation and remediation
Several days have passed since the dramatic reveal of CVE-2021-44228 (aka Log4Shell), an easily exploitable (without authentication) RCE flaw in Apache Log4j, a popular open-source Java-based logging utility that’s seemingly used by most enterpri… Continue reading Log4Shell update: Attack surface, attacks in the wild, mitigation and remediation
Why Were the Russians So Set Against This Hacker Being Extradited?
The Russian government has for the past four years been fighting to keep 29-year-old alleged cybercriminal Alexei Burkov from being extradited by Israel to the United States. When Israeli authorities turned down requests to send him back to Russia — supposedly to face separate hacking charges there — the Russians then imprisoned an Israeli woman for seven years on trumped-up drug charges in a bid to trade prisoners. That effort failed as well, and Burkov had his first appearance in a U.S. court last week. What follows are some clues that might explain why the Russians are so eager to reclaim this young man. Continue reading Why Were the Russians So Set Against This Hacker Being Extradited?
A week in security (December 11–17)
A compilation of notable security news and blog posts from December 11 to December 17, including the net neutrality ruling, adult site advertising, and Bitcoin-related scams.
Categories:
Security world
Week in security
Tags: airport hackcrypto-… Continue reading A week in security (December 11–17)
Security company Fox-IT reveals, details MitM attack they suffered in September
Dutch IT security consultancy/service provider Fox-IT has revealed on Thursday that it has suffered a security breach, which resulted in some files and emails sent by the company’s customers to be intercepted by an unknown attacker. The attack On… Continue reading Security company Fox-IT reveals, details MitM attack they suffered in September
Fox-IT reveals hackers hijacked its DNS records, spied on clients’ files
Given the nature of Fox-IT’s work there are likely to be some interesting theories as to who might have been behind this particular attack, and what they were attempting to spy upon.
Continue reading Fox-IT reveals hackers hijacked its DNS records, spied on clients’ files