Advisory

Critical Vulnerabilities in Fortinet FortiOS admin 19 Feb 2024

BACKGROUND

Fortinet has recently disclosed two critical vulnerabilities (CVE-2024-21762 and CVE-2024-23113) in
Fortinet products that could be exploited to gain unauthorised access to affected systems.
 

Whatsapp Account Takeover admin 31 Jan 2024

Whatsapp Account Takeover

Infographic Advisory on Phone Scam Impersonating Local Telco admin 13 Nov 2023

Infographic Advisory on Phone Scam Impersonating Local Telco

Fake Message Impersonating Ministry of Culture Youth and Sports (MCYS) admin 01 Nov 2023

Fake Message Impersonating Ministry of Culture Youth and Sports (MCYS)

Akira Ransomware admin 19 Oct 2023

BACKGROUND

Akira is a ransomware group which was first observed in March 2023. Akira ransomware actors typically gain access to victims’ devices by using compromised credentials. Its operators use multi-extortion tactics, steal victims’ critical data and encrypts devices and files before demanding outrageous ransom payments. Victims who fail to comply with their demands will be listed on their TOR-based website along with the stolen data.

Ransomware Exploiting Zero-Day Vulnerability in Cisco ASA and FTD Software admin 17 Oct 2023

BACKGROUND

Ransomware groups including LockBit and Akira are reportedly exploiting a zero-day vulnerability (CVE-2023-20269) in the VPN feature of Cisco’s Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) software, to gain access to corporate networks.

Apple Security Update Fixes Vulnerabilities Linked To Pegasus Spyware admin 12 Sep 2023

BACKGROUND

Apple has released security updates for iOS, macOS, iPadOS and watchOS to fix two zero-day vulnerabilities which have been exploited in the wild to compromise Apple products without any interaction from the victim. The exploit allows attackers to target victims with NSO Group’s Pegasus Spyware, without any interaction from the targeted user.

The two known vulnerabilities are tracked as CVE-2023-41064 and CVE-2023-41061. 

IMPACT

URGENT UPDATE FOR APPLE DEVICES TO ADDRESS ZERO-DAY BUG admin 17 Jul 2023

BACKGROUND

Apple users are strongly advised to install an urgent Rapid Security Response (RSR) update to address 
a vulnerability that impacts fully patched iPhones, Macs, and iPads. The RSR patches includes updates 
for the latest versions of macOS, iOS, iPadOS, and Safari.

IMPACT

Critical Vulnerability in FortiOS SSL-VPN Targeting Governments admin 30 Jan 2023

BACKGROUND

Fortinet has issued a warning on a vulnerability affecting several versions of Fortinet FortiOS used in its FortiGate secure socket layer virtual private network (SSL VPN) and firewall products. The security flaw is tracked as CVE-2022-42475 which is rated Critical and assigned a CVSS score of 9.3
out of 10. The attacks are said to be complex and highly targeted at “governmental or government-related targets.”

Dridex Malware Targeting MacOS

BACKGROUND
 
Dridex, also known as Bugat and Cridex, is a banking malware that steals sensitive data from infected machines, and also deliver and execute malicious modules. Previously targeting Windows computers, it is now targeting Macs to spread by using email attachments that look like regular documents.
 
MODUS OPERANDI