Entries by johan_kan

Nation state actors plays the long game

This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). “Qihoo 360, one of the most prominent cybersecurity firms, today published a new report accusing the U.S. Central Intelligence Agency (CIA) to be behind an 11-year-long hacking campaign against several Chinese industries and government […]

Reality Check: The Story of Cybersecurity

This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). “Often, hackers are portrayed as “technical sorcerers” while defenders are “hapless techies focused on zero-day vulnerabilities and only the most advanced threat vectors,” but in reality, that’s not true. Cybercriminals are not always sophisticated, […]

CVE-2020-0688 | Microsoft Exchange Validation Key Remote Code Execution Vulnerability

Published: 02/11/2020 | Last Updated : 02/11/2020 MITRE CVE-2020-0688 “A remote code execution vulnerability exists in Microsoft Exchange Server when the server fails to properly create unique keys at install time. Knowledge of a the validation key allows an authenticated user with a mailbox to pass arbitrary objects to be deserialized by the web application, […]

Basefarm security news

This blog post is a short summary of this week’s Information Security News put together by SecOps team. Basefarm have started to publish vulnerability bulletin in the blog posts, feel free to share this with our customers: https://blog.basefarm.com/blog/category/security-blog/vuln-bullet/feed/   Top 3 Security News: CVE-2020-0618 | Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability Critical […]