Category: alerts

Cyber Security Monitor Alerts News Notifications. We monitor and send notifications on the latest Cyber Security alerts, blogs, news on data breaches and emerging cyber threats.

  • Dark Web Markets for Stolen Data See Banner Sales

    Despite an explosion in the sheer amount of stolen data available on the Dark Web, the value of personal information is holding steady, according to the 2021 Dark Web price index from Privacy Affairs. That leaves these thriving dirty data dealers in a familiar predicament — they need to lock down their growing businesses for… Read more

  • Adobe Critical Code-Execution Flaws Plague Windows Users

    The critical flaws exist in Adobe Framemaker, Connect and the Creative Cloud desktop application for Windows. Read more

  • Adobe Releases Security Updates

    Original release date: March 9, 2021 Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Framemaker APSB21-14 Creative Cloud Desktop… Read more

  • Apple Plugs Severe WebKit Remote Code-Execution Hole

    Apple pushed out security updates for a memory-corruption bug to devices running on iOS, macOS, watchOS and for Safari. Read more

  • CISA Strongly Urges All Organizations to Immediately Address Microsoft Exchange Vulnerabilities

    Original release date: March 8, 2021 CISA has published a Remediating Microsoft Exchange Vulnerabilities web page that strongly urges all organizations to immediately address the recent Microsoft Exchange Server product vulnerabilities. As exploitation of these vulnerabilities is widespread and indiscriminate, CISA strongly advises organizations follow the guidance laid out in the web page. The guidance… Read more

  • Newest Intel Side-Channel Attack Sniffs Out Sensitive Data

    A new side-channel attack takes aim at Intel’s CPU ring interconnect in order to glean sensitive data. Read more

  • Crypto-Miner Campaign Targets Unpatched QNAP NAS Devices

    Researchers warn two critical bugs impacting multiple QNAP firmware versions are under active attack. Read more

  • Vulnerability Summary for the Week of March 1, 2021

    Original release date: March 8, 2021   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info accellion — fta Accellion FTA 9_12_432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA_9_12_444 and later. 2021-03-02 7.5 CVE-2021-27730 MISC apache… Read more

  • Microsoft IOC Detection Tool for Exchange Server Vulnerabilities

    Original release date: March 6, 2021 Microsoft has released an updated script that scans Exchange log files for indicators of compromise (IOCs) associated with the vulnerabilities disclosed on March 2, 2021. CISA is aware of widespread domestic and international exploitation of these vulnerabilities and strongly recommends organizations run the Test-ProxyLogon.ps1 script—as soon as possible—to help… Read more

  • Microsoft Releases Alternative Mitigations for Exchange Server Vulnerabilities

    Original release date: March 5, 2021 Microsoft has released alternative mitigation techniques for Exchange Server customers who are not able to immediately apply updates that address vulnerabilities disclosed on March 2, 2021. CISA and Microsoft encourages organizations to upgrade their on-premises Exchange environments to the latest supported version. If an organization is unable to immediately… Read more