COVID-19 MALICIOUS CYBER ATTACK VECTORS AND SAFETY PRECAUTIONS

The National Computer Emergency Response Team of the Philippines (CERT-PH) alerts all government agencies, private sectors, and all individuals to be aware of the malicious attack vectors that were made in order to take advantage of the ongoing Coronavirus (COVID-19) pandemic. Threat actors may send fraudulent emails that have malicious links or attachments which are continue reading : COVID-19 MALICIOUS CYBER ATTACK VECTORS AND SAFETY PRECAUTIONS

Microsoft Latest Security Updates

On January 14, 2020, Microsoft released its monthly security update as part of the Patch Tuesday updates for January 2020. The updates addressed notable vulnerabilities in the Windows Operating System. 1. CVE-2020-0601 The spoofing vulnerability, disclosed by US National Security Agency (NSA), exists in the way the default Windows cryptographic library, CryptoAPI (Crypt32.dll), validates Elliptic continue reading : Microsoft Latest Security Updates

Mikrotik Vulnerability

All organizations and users who are using Mikrotik routers are urged to review and make sure that all patch releases are already applied to their devices. Patching your outdated Mikrotik routers and other devices’ versions will minimize any risks of getting injected with cryptojacking malware on your system.  CERT-PH recommends assigning a personnel to monitor the official blog website continue reading : Mikrotik Vulnerability

Exim Vulnerability (CVE-2019-10149)

A Remote Command Execution (RCE) vulnerability (CVE-2019-10149) in the open source Exim mail transfer agent (MTA) implemented in Unix-based mail servers was publicly disclosed. The vulnerability can be exploited through a malicious email sent to a vulnerable server, and injected commands will typically run as root. This is due to improper validation of the recipient continue reading : Exim Vulnerability (CVE-2019-10149)

Defending Against Ransomware Generally

The Department of Information and Communications Technology (DICT), through Secretary Rodolfo A Salalima and Assistant Secretary Allan S Cabanlong confirms that a global ransomware attack is currently in progress. The sophisticated ransomware, known as ‘Wanna Cry’ or ‘Wanna Decryptor’, exploits a vulnerability in Microsoft’s Windows operating system. This malware is designed to spread laterally on continue reading : Defending Against Ransomware Generally