Welcome to Ironshare’s Cyber Round-up, where we look back at the events of that last week to cover some of the news, posts, views, and highlights from the world of Security.
In this week’s round-up:
It is widely believed that if a padlock appears in the search bar of your browser, then the website is safe to visit. This is a common misconception that attackers are taking advantage of. By using HTTPS on phishing web pages, threat actors are able to make their phishing sites more believable, which typically results in more successful attacks. In 2022, 49% of all observed phishing sites were using HTTPS, this was a 56% increase compared to 2021. This is a key example of attackers exploiting a lack of awareness and education; we strongly advise everyone to educate themselves on internet threats, and the dangers of phishing attacks.
By infosecurity-magazine.com
A whitepaper detailing an “adaptable” approach to regulating artificial intelligence (AI) has been published by the UK government. The whitepaper was published on the 29 March and emphasises the Government’s commitment to “unleashing AI’s potential across the economy”. This whitepaper builds on the government’s national AI strategy which was published in September 2021. However, the government noted that it would avoid introducing “heavy-handed legislation which could stifle innovation”.
The official whitepaper can be found here.
By computerweekly.com
Taiwanese Vendor, QNAP, has urged all customers to update their Linux-powered NAS devices, due to a Sudo privilege escalation vulnerability. This high severity flaw is known to affect QTS, QuTS hero, QuTScloud, and QVP operating systems. Users can apply the latest updates from the Control Panel of their NAS console.
More details can be found in the official CVE entry here.
By bleepingcomputer.com
In August 2022, Cisco contacted Netgear about four newly discovered vulnerabilities in in Netgear’s Orbi routers, one of which is considered critical and could lead to command execution. More than 90 days have passed since this disclosure, and so Cisco have publicly released proof-of-concept exploits for the four flaws. While the first three have been patched, the fourth still exists in the latest versions of Netgear’s Orbi mesh wireless system. Netgear has not given any official public statements on the publicising of these flaws, but it is believed that they are actively working on a fix for the fourth bug.
By theregister.com
3CX is currently working to release a software update for their desktop app, following overwhelming concerns of an active supply chain attack. This was reported by multiple cybersecurity vendors, which seemingly started with a
“Trojanized 3CX desktop app – that pulls ICO files appended with Base64 from GitHub and ultimately leads to a third-stage infostealer DLL,”.
This statement comes from SentinelOne, who have contributed heavily to the investigation of this incident. An urgent update is expected soon, and we advise all 3CX users to keep an eye out for its release.
By thehackernews.com
Cybercriminals have started to focus on a Critical IBM File Transfer vulnerability, recently patched by IBM. The Bug is being tracked as CVE-2022-47986 and has been exploited in the wild. Security researchers said,
"We strongly recommend patching on an emergency basis, without waiting for a typical patch cycle to occur,"
The vulnerability carries a 9.8/10 on the CVSS vulnerability-severity scale and exists in Faspex’s version 4.4.2 patch level 1.
By darkreading.com
And that’s it for this week’s round-up, please do check in next week for our new batch of security news and posts.
Stay Safe, Secure and Healthy!
Edition #230 – 31st March 2023
Stuart Hare is a Technologist with a passion for helping people in all aspects of IT & Cyber Security. Stuart is the Founder of Ironshare, an Information and Cyber Security company providing consultancy and managed services.
Samuel is a Security Analyst with Ironshare, an Information and Cyber Security company providing Security consultancy and managed services.
Joshua is working as a Managed Service Lead with Ironshare, an Information and Cyber Security company providing Security consultancy and managed services.
