Threat Intelligence, Cybersecurity Blog Managed Security Services MSSP Resources

VULNERABILITY – Office 365 ZWSP Detection

January 22, 2019

Earlier this month, security researchers at Avanan discovered a new zero-width space (ZWSP) vulnerability that was confirmed to have affected Office 365 environments between November 10th, 2018 until January 9th, 2019.

VULNERABILITY – IE ZERO DAY FLAW (CVE-2018-8653)

January 10, 2019

In the second half of December 2018, a new IE Zero Day named “CVE-2018-8653” was discovered.

METHOD – New OpenSSH backdoors exploiting Linux servers discovered

December 12, 2018

ESET recently released a report listing 21 in-the-wild OpenSSH malware families reportedly targeting the portable OpenSSH used in Linux OS, out of which 12 appears to have not been documented before.

Breach – United States Postal Service

December 6, 2018

A serious vulnerability on the United States Postal Service (USPS) website (www.

TARGET – AUSTRALIAN PRIME MINISTER’S DOMAIN HIJACKED

October 23, 2018

An individual at DigitalEagle’s Digital Marketing Agency based out of Australia was able to purchase the rights to domain “scottmorrison.

ATTACKER – NEW NORTH KOREAN THREAT GROUP TARGETING FINANCIAL INSTITUTIONS

October 4, 2018

FireEye researchers have just released details on a new threat group dubbed APT38, held accountable for the attempted heist of approximately $1.

VULNERABILITY – NEW APPLE iOS 12 SCREEN BYPASS DISCOVERED

October 3, 2018

It didn’t take long until a new lock screen flow was found for the new Apple’s iOS 12, released on 17 September 2018.

METHOD – REMCOS RAT

October 2, 2018

A new remote access tool, known as Remcos, has been seen rising in popularity over the last month and has been linked to several recent attacks.

TARGET – FACEBOOK DATA BREACH

October 1, 2018

Facebook has returned to the headlines again for issues regarding user privacy and personal information exposure after an alleged attack on their network.

TARGET – British Airways Credit Card Data Breach

September 7, 2018

On September 7th, it was publicly disclosed that 380,000 customer transactions processed by the British Airways website between August 21st to September 5th were compromised by attackers.