
Cyber Round-up for 3rd May
Welcome to the Ironshare Cyber Round-up where we look back at the events of that last week and cover some of the news, posts, views, and highlights from the world of Security.
In this week’s round-up:
Security News
Hackers went undetected in Citrix’s internal network for six months
After gaining access to Citrix’s Network, hackers remained active on their systems for six months before they were detected. Data was exfiltrated including possible employee information.
By TechCrunch.
Sacked defence secretary denies security council leak
Last week we heard that there was a leak from the UK National Security Council related to the government deciding to use Huawei in its 5G network. As a result of this leak, former defence secretary Gavin Williamson has been sacked from his position, although he denies leaking the information.
By Sky News.
Japan is developing a computer virus to fight cyberattacks
The Japanese Defence Ministry is considering working with private companies to assist in creating a computer virus as a defence mechanism against cyber attacks. To us this doesn’t sound like a great idea. See what you think?
By Hot for Security.
Threats
Sodinokibi ransomware exploits WebLogic Server vulnerability
The recently disclosed Oracle WebLogic vulnerability is actively being exploited by the bad guys. By simply accessing the WebLogic server via HTTP, hackers are launching a new ransomware attack called Sodinokibi.
By Cisco Talos.
Magecart Group 12 Targets OpenCart Websites
RiskIQ have identified a large scale Magecart operation that is targeting OpenCart based online stores, placing thousands of shopping platforms at risk of personal and financial information theft.
By Bleeping Computer.
Vulnerabilities & Updates
Cisco issues critical security warning for Nexus Switches
Cisco have released 40 security advisories which included a critical vulnerability for the Nexus 9000 switches. A bug in SSH key management services can be exploited to allow an attacker to connect to the device with root privileges.
By Network World.
Sky Broadband Routers bricked by firmware update
Sky customers have been complaining after a new firmware update has been breaking their broadband routers. If you are a Sky customer who has changed the default DNS settings, you may need to roll back your router’s firmware.
By TheRegister.
And that’s it for this week round-up, please don’t forget to tune in for our next instalment.
Why not follow us on social media using the links provided on the right.
Edition #39 – 3rd May 2019
Ironshare – Security Simplified