Windows DNS SIGRed bug gets first public RCE PoC exploit

A working proof-of-concept (PoC) exploit is now publicly available for the critical SIGRed Windows DNS Server remote code execution (RCE) vulnerability. Microsoft issued security updates to address the security flaw tracked as CVE-2020-1350 on July 14, 2020, together with a registry-based workaround that helps protect affected Windows servers from attacks. SIGRed has existed in Microsoft's … Continue reading Windows DNS SIGRed bug gets first public RCE PoC exploit

Ubiquiti users told to change their passwords following security breach

Breach occurred at third-party cloud provider used by IoT device manufacturer Email addresses, names, and hashed and salted passwords exposed IoT device vendor Ubiquiti has told customers that they should change their passwords after a security breach left user details exposed. In an email sent to users, router and access point manufacturer Ubiquiti explained that … Continue reading Ubiquiti users told to change their passwords following security breach

Hackers release over 4,000 files stolen from Scottish environment agency in ransomware attack

SEPA was hit by ransomware attack on Christmas Eve Corporate plans and contracts published after organisation refused to give in to ransom demand There’s more bad news for the Scottish Environment Protection Agency (SEPA) which was hit by a ransomware attack on Christmas Eve – a serious security breach that has continued to impact its … Continue reading Hackers release over 4,000 files stolen from Scottish environment agency in ransomware attack

Rethinking IoT Security: Its Not About the Devices

Keeping IoT safe in the future will require securing the networks themselves. Focusing on the devices is a never-ending battle that will only become more burdensome. Across the rapidly changing enterprise landscape, Internet of Things (IoT) security is top of mind for most organizations. As cybersecurity leaders, we know that the growing amount of IoT … Continue reading Rethinking IoT Security: Its Not About the Devices

CERT/CC and CISA Report Multiple Vulnerabilities in Dnsmasq

CISA and the CERT Coordination Center (CERT/CC) are aware of multiple vulnerabilities affecting Dnsmasq version 2.82 and prior. Dnsmasq is a widely-used, open-source software that provides Domain Name Service forwarding and caching and is common in Internet-of-Things (IoT) and other embedded devices. A remote attacker could exploit some of these vulnerabilities to take control of … Continue reading CERT/CC and CISA Report Multiple Vulnerabilities in Dnsmasq