Cyber Round-up

Cyber Round-up for 3rd May

Welcome to the Ironshare Cyber Round-up where we look back at the events of that last week and cover some of the news, posts, views, and highlights from the world of Security.

In this week’s round-up:

Security News

Hackers went undetected in Citrix’s internal network for six months

After gaining access to Citrix’s Network, hackers remained active on their systems for six months before they were detected. Data was exfiltrated including possible employee information.

By TechCrunch.

Sacked defence secretary denies security council leak

Last week we heard that there was a leak from the UK National Security Council related to the government deciding to use Huawei in its 5G network. As a result of this leak, former defence secretary Gavin Williamson has been sacked from his position, although he denies leaking the information.

By Sky News.

Japan is developing a computer virus to fight cyberattacks

The Japanese Defence Ministry is considering working with private companies to assist in creating a computer virus as a defence mechanism against cyber attacks. To us this doesn’t sound like a great idea. See what you think?

By Hot for Security.


Sodinokibi ransomware exploits WebLogic Server vulnerability

The recently disclosed Oracle WebLogic vulnerability is actively being exploited by the bad guys. By simply accessing the WebLogic server via HTTP, hackers are launching a new ransomware attack called Sodinokibi.

By Cisco Talos.

Magecart Group 12 Targets OpenCart Websites

RiskIQ have identified a large scale Magecart operation that is targeting OpenCart based online stores, placing thousands of shopping platforms at risk of personal and financial information theft.

By Bleeping Computer.

Vulnerabilities & Updates

Cisco issues critical security warning for Nexus Switches

Cisco have released 40 security advisories which included a critical vulnerability for the Nexus 9000 switches. A bug in SSH key management services can be exploited to allow an attacker to connect to the device with root privileges.

By Network World.

Sky Broadband Routers bricked by firmware update

Sky customers have been complaining after a new firmware update has been breaking their broadband routers. If you are a Sky customer who has changed the default DNS settings, you may need to roll back your router’s firmware.

By TheRegister.

And that’s it for this week round-up, please don’t forget to tune in for our next instalment.

Why not follow us on social media using the links provided on the right.

Edition #39 – 3rd May 2019

Ironshare – Security Simplified