Category

Security

Cisco Backdoor Account & Other Critical Vulnerabilities

Hello, Very recently Cisco announced 3 “critical risk” and numerous other “high risk” vulnerabilities. One of those vulnerabilities affect IOS XE devices which come with a default pre-configured privileged account which if known could grant easy access to the device by an attacker. Some sources say that this made its way by mistake from testing...
Read More

Security Alert: Processors Meltdown!

Hello, Recently multiple disclosed security vulnerabilities took the Internet by storm. Dubbed “Meldown” and “Spectre”, those vulnerabilities seem to affect numerous systems and processors including Intel, AMD, ARM; thus it has the potential to affect PCs, servers, networking equipment, mobile devices and even cloud. An attacker can exploit those vulnerabilities by running a special code...
Read More

Wifi is no Longer Secure – WPA2 got KRACKed !

On October 16, 2017, Mathy Vanhoef and Frank Piessens of imec-DistriNet published a paper detailing their discovery of security weaknesses in WPA2. WPA2 (Wi-Fi Protected Access II) is a widely used security protocol developed by the Wi-Fi Alliance for the purpose of  encrypting and securing the traffic on Wi-fi connections between the Wi-fi router and endpoints. WPA2...
Read More

SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE

Summary: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected...
Read More

Security Alert: Cisco ASA SNMP Remote Code Execution Vulnerability (CVE-2016-6366)

Hello, Very recently, a new security vulnerability affecting Cisco ASA & Firepower was discovered. Below are the short details: Background: A vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute...
Read More

Multiple Cisco Security Vulnerabilities (ASA, CUCM, WLC, etc.)

Hello, On April 20th, Cisco released multiple advisories detailing security vulnerabilities that affect a wide range of their products including ASA firewall, Unified Communications Manager (CUCM), WLC and more. The vulnerabilities, if exploited, would allow an attacker to launch a denial-of-service (DoS) attack on the device, possibly resulting in service disruption. The vulnerabilities details and remedies...
Read More

Locky Ransomware

What is a Ransomware? A ransomware is a malicious program that denies the user access to their own files by hiding/scrambling the files and/or encrypting them with strong encryption algorithms. Then, it forces the victim to pay a ransom through online payment – usually bitcoin – in order to regain access to their data. This...
Read More

DROWN Attack (CVE-2016-0800), Turing Award and Leo’s Oscar

Hello, A new security vulnerability (“DROWN“: Decrypting RSA with Obsolete and Weakened eNcryption) affecting OpenSSL was disclosed yesterday which allows an attacker to decrypt secure TLS sessions and steal sensitive data such as passwords and credit cards information. All applications that rely on TLS protocol (like websites and email) are therefore affected. The vulnerability (id:...
Read More

Security Alert: Glibc Buffer Overflow (CVE-2015-7547)

Hello,   Following our previous communication concerning the announcements of OpenSSL vulnerability (CVE-2016-0701) and Cisco’s ASA IKE Buffer Overflow (CVE-2016-1287), a new security vulnerability surfaced which targets systems that use the “GNU Library C (glbic)” (including Cisco, Juniper and many others). “The glibc DNS client side resolver is vulnerable to a stack-based buffer overflow when...
Read More

“Leap Second”: Witness the 61-seconds Minute on June 30th 2015

End of June 2015 (precisely on June 30th, 2015 at 23:59:59 UTC) an additional -Leap- second (23:59:60) will be added to UTC time thus affecting clock time around the world and everything else that comes with it. If you are an IT personnel, you should check the impact of this event on your network by reading...
Read More
1 2