CyberWatch Blog Header.jpg

CyberWatch

HP Keylogger Vulnerability

Posted by Mike Lehmberg on May 17, 2017 11:47:46 AM

In 2015 HP released an audio driver on a number of systems that inadvertently acted as a keylogger. This could potentially allow a malicious individual to record critical information from a user’s keystrokes on these machines. HP has released a listing of systems that are affected by this:

Read More

Topics: Keylogger, HP

WannaCry Ransomware Update

Posted by Mike Lehmberg on May 17, 2017 11:47:26 AM

Reports are now showing that WannaCry Ransomware has affected 200,000 victims in 150 different countries. On Monday experts expected the issue to escalate due to users returning to work following the initial attack. Microsoft released an emergency patch on Friday (5/12) but the attackers have now released a revised version of the ransomware.

Read More

Topics: Ransomware, Microsoft

WannaCry Ransomware

Posted by Mike Lehmberg on May 14, 2017 8:02:17 PM

In the last few days over 75,000 ransomware attacks have occurred in 99 different countries. WannaCry is possibly one of the largest global cyber-attacks to date and has wreaked havoc to businesses around the world. This ransomware takes advantage of a vulnerability that Microsoft patched on Windows operating systems in March of this year.

Read More

Topics: Ransomware, Windows

Cisco WebEx Meetings Server Information Disclosure Vulnerability

Posted by Mike Lehmberg on May 12, 2017 3:04:08 PM

Recently a vulnerability was found affecting the Cisco WebEx Meetings Server. This vulnerability could allow for an unauthenticated remote attacker to gain information that could allow them to access scheduled customer meetings. The following releases have been identified as vulnerable:

Read More

Topics: Vulnerability, Cisco, WebEx

Cisco Product Vulnerability Alerts

Posted by Mike Lehmberg on May 10, 2017 11:29:00 AM

Cisco has identified several vulnerabilities related to some of its technology offerings. A few examples would include the CVR100W Wireless-N VPN Router, TelePresence and IOS XR Software. If any of the below products are utilized within your environment they could potentially leave your network at risk. The full list of products have been identified and are provided below:

Read More

Topics: Vulnerability, Cisco

Microsoft "Crazy Bad" Zero-Day Vulnerability

Posted by Mike Lehmberg on May 9, 2017 3:08:13 PM
Days ago a vulnerability was discovered in the Microsoft Malware Protection Engine of the Windows Operating System. This Malware Protection Engine is used by Windows Defender and other security products. If this vulnerability is exploited it would allow a remote attacker to take complete control of the Windows system.

Microsoft has released a patch for what has been dubbed the “Crazy Bad” bug. It is highly recommended that your systems be updated as soon as possible in order to mitigate any potential malicious activity on your network. If you have any questions or need assistance in patching the vulnerability please contact us and we will be happy to assist you.

Read More

Topics: Critical, Microsoft, Zero-Day

Google Doc Phishing Campaign

Posted by Mike Lehmberg on May 4, 2017 7:12:33 AM
Read More

Topics: Google, Gmail, Phishing

Intel Product Vulnerability Advisory

Posted by Mike Lehmberg on May 2, 2017 9:08:06 AM
Read More

Topics: Vulnerability, Critical, Intel

Multiple Cisco Vulnerability Alerts

Posted by Mike Lehmberg on Apr 21, 2017 9:37:41 AM

 

Cisco has identified several vulnerabilities related to some of its technology offerings. A few examples would include Cisco Unified Call Manager, Cisco ASA and Cisco Integrated Management Controller. If any of the below products are utilized within your environment they could potentially leave your network at risk. The full list of products have been identified and are provided below:
Read More

Topics: Vulnerability, Critical, Cisco

VMware vCenter Server updates resolve a remote code execution vulnerability via BlazeDS

Posted by Mike Lehmberg on Apr 17, 2017 1:45:23 PM

Recently a critical vulnerability was discovered with VMware vCenter Server 6.5 and 6.0. These versions contain a remote code execution vulnerability which may allow for the execution of arbitrary code.

Read More

Topics: VMware, Vulnerability