Cyber alerts

Philips Patient Monitor Vulnerabilities

Multiple vulnerabilities in FocusPoint, IntelliVue, and PICiX products

• Severity: Low
• Type: Insecure software

PyVil Remote Access Trojan

An advanced Evilnum tool targeting FinTech

• Severity: Medium
• Type: Malware

Microsoft Releases September 2020 Security Updates

Scheduled updates as part of Patch Tuesday

• Severity: Information only
• Type: Insecure software

Google Releases Security Updates for Chrome

Scheduled updates for Chrome on Windows, macOS, and Linux

• Severity: Information only
• Type: Insecure software

Adobe Releases Security Updates

Scheduled updates for AEM, Framemaker, and InDesign

• Severity: Information only
• Type: Insecure software

Cisco Releases Security Updates

Scheduled updates for IOS, Jabber, and NFVIS

• Severity: Information only
• Type: Insecure software

ECCENTRICBANDWAGON, VIVACIOUSGIFT, and FASTCASH Trojans

A trio of HIDDEN COBRA remote access tools

• Severity: Medium
• Type: Malware

Cisco IOS Remote Memory Exhaustion Vulnerability

Out-of-band updates for an exploited vulnerability in IOS XR

• Severity: Low
• Type: Vulnerability

Cisco Releases Security Updates

Scheduled updates for FXOS, IOS, and NX-OS

• Severity: Information only
• Type: Insecure software

Mozilla Releases Security Updates for Multiple Products

Scheduled updates for Firefox and Thunderbird

• Severity: Information only
• Type: Insecure software

Google Releases Security Updates for Chrome

Scheduled updates for Chrome on Windows, Mac, and Linux

• Severity: Information only
• Type: Insecure software

DarkSide Ransomware

Enterprise malware with links to GandCrab and Sodinokibi

• Severity: Medium
• Type: Malware

Philips SureSigns Improper Access Vulnerabilities

Multiple vulnerabilities in vital signs monitors

• Severity: Low
• Type: Vulnerability

Cisco Releases Security Updates

Scheduled updates for IP cameras, Smart Software Manager, and vWAAS

• Severity: Information only
• Type: Insecure software

ISC Releases Security Advisories for BIND

Scheduled updates for the Berkeley Internet Name Domain

• Severity: Information only
• Type: Insecure software

BLINDINGCAN Remote Access Trojan

A HIDDEN COBRA tool

• Severity: Medium
• Type: Malware

Google Releases Security Updates for Chrome

Scheduled updates for Chrome on Windows, macOS, and Linux

• Severity: Information only
• Type: Insecure software

Apache Releases Security Advisory for Struts 2

Scheduled updates for the Struts framework

• Severity: Information only
• Type: Insecure software

XCSSET Trojan

A Mac trojan targeting Xcode projects

• Severity: Low
• Type: Malware

FritzFrog Botnet

A sophisticated crypto mining botnet

• Severity: Low
• Type: Malware

Drovorub Toolset

An advanced APT28 malware platform

• Severity: Medium
• Type: Malware

SAP Releases August 2020 Security Updates

Scheduled updates for multiple SAP products

• Severity: Low
• Type: Vulnerability

Google Releases Security Updates for Chrome

Scheduled updates for Chrome on Windows, macOS, and Linux

• Severity: Low
• Type: Vulnerability

Microsoft Releases August 2020 Security Updates

Scheduled updates as part of Patch Tuesday

• Severity: Low
• Type: Vulnerability

Citrix Releases Security Updates for XenMobile Server

Out-of-band updates for Citrix Endpoint Management

• Severity: Low
• Type: Vulnerability

Adobe Releases Security Updates

Scheduled updates for Acrobat, Lightroom, and Reader

• Severity: Low
• Type: Vulnerability

Zerologon Privilege Escalation Vulnerability

A remote vulnerability affecting Windows DCs

• Severity: High
• Type: Vulnerability

Cisco Releases Security Updates for Multiple Products

Scheduled updates for AnyConnect, DNA Centre, and SB network switches

• Severity: Low
• Type: Vulnerability

Qakbot Trojan

A novel banking trojan and worm

• Severity: Medium
• Type: Malware

Philips DreamMapper Unauthorised Access Vulnerability

A vulnerability in Philips DreamMapper could allow unauthorised access to log file information.

• Severity: Low
• Type: Vulnerability

Taidoor Remote Access Trojan

A RAT used by multiple Chinese APT groups

• Severity: Medium
• Type: Malware

Cisco Releases Security Updates for Multiple Products

Scheduled updates for DCNM and vManage

• Severity: Low
• Type: Vulnerability

BootHole GRUB2 Execution Vulnerability

An ACE vulnerability in the boot loader used by Windows and Linux

• Severity: Medium
• Type: Vulnerability

Google Releases Security Update for Chrome

Scheduled updates for Chrome for Window, Mac, and Linux

• Severity: Low
• Type: Vulnerability

Ensiko Remote Shell

A PHP web shell with extensive capabilities

• Severity: Medium
• Type: Malware

Adobe Releases Security Updates for Magento

Scheduled updates for Magento

• Severity: Low
• Type: Vulnerability

Mozilla Releases Security Updates for Multiple Products

Scheduled updates for Firefox and Thunderbird

• Severity: Low
• Type: Vulnerability

Doki Backdoor

Backdoor that uses the Dogecoin API and targets Docker instances

• Severity: Low
• Type: Malware

VHD Ransomware

A Hidden Cobra ransomware tool

• Severity: Low
• Type: Malware

Prometei Botnet

A cryptomining worm and botnet

• Severity: Medium
• Type: Malware

Citrix Releases Security Updates for Workspace App for Windows

Out-of-band update for Workspace

• Severity: Low
• Type: Vulnerability

Adobe Releases Security Updates

Scheduled updates for Bridge, Photoshop, Prelude, and Reader

• Severity: Low
• Type: Vulnerability

Cisco Releases Security Updates for ASA and FTD Software

Out-of-band updates for ASA and FTD web interfaces

• Severity: Low
• Type: Vulnerability

GMERA Trojan

A cryptocurrency infostealer

• Severity: Low
• Type: Malware

Mozilla Releases Security Update for Thunderbird

Scheduled updates for the Thunderbird mail client

• Severity: Low
• Type: Vulnerability

Apple Releases Security Updates

Scheduled updates for iOS, maOC, Safari, tvOS, and watchOS

• Severity: Low
• Type: Vulnerability

Microsoft Releases Security Update for Edge

Out-of-band updates for the Edge browser

• Severity: Low
• Type: Vulnerability

SoreFang Downloader

An APT29 downloader

• Severity: Medium
• Type: Malware

WellMail Remote Access Trojan

An APT29 RAT

• Severity: Medium
• Type: Malware

WellMess Trojan

An APT29 infostealer

• Severity: Medium
• Type: Malware

Google Releases Security Updates for Chrome

Scheduled updates for Chrome for Window, Mac, and Linux

• Severity: Low
• Type: Vulnerability

SmartLinx Neuron 2 Environment Escape Vulnerability

A vulnerability in a mobile clinical monitoring system

• Severity: Low
• Type: Vulnerability

Oracle Releases July 2020 Security Updates

Scheduled updates for multiple Oracle products

• Severity: Low
• Type: Vulnerability

Cisco Releases Security Updates for Multiple Products

Scheduled updates for

• Severity: Low
• Type: Vulnerability

Adobe Releases Security Updates for Multiple Products

Scheduled updates for ColdFusion, Creative Cloud, Download Manager, Genuine Service, and Media Encoder

• Severity: Low
• Type: Vulnerability

Apache Releases Security Advisories for Apache Tomcat

Regular updates for Tomcat

• Severity: Low
• Type: Vulnerability

SAP Releases Security Update for NetWeaver AS

Out-of-band updates for NetWeaver Application Server

• Severity: Low
• Type: Vulnerability

AgeLocker Ransomware

Ransomware using an open-source encryption function

• Severity: Low
• Type: Malware

Microsoft Releases July 2020 Security Updates

Scheduled updates for multiple Microsoft products

• Severity: Low
• Type: Vulnerability

SigRed Windows DNS RCE Vulnerability

A critical vulnerability in the Windows Domain Name System

• Severity: High
• Type: Vulnerability

VMware Releases Security Updates for Multiple Products

Scheduled updates for Fusion, Horizon, and VMRC

• Severity: Low
• Type: Vulnerability

Zoom Releases Security Update

Out-of-band updates for the Zoom Windows Client

• Severity: Low
• Type: Vulnerability

Juniper Networks Releases Security Updates for Multiple Products

Scheduled updates for Junos OS, Junos Space, JSA, and SRC

• Severity: Low
• Type: Vulnerability

VMware Releases Security Update for VeloCloud

Scheduled updates for VeloCloud SD-WAN

• Severity: Low
• Type: Vulnerability

Palo Alto Networks Releases Security Updates

Scheduled updates for PAN-OS

• Severity: Low
• Type: Vulnerability

Purple Fox Malware

A combined backdoor, rootkit, and exploit kit

• Severity: Medium
• Type: Malware

Conti Ransomware

Ransomware with a unique encryption routine

• Severity: Medium
• Type: Malware

Citrix Releases Security Updates for Multiple Products

Out-of-band updates for multiple Citrix products

• Severity: Low
• Type: Vulnerability

Mozilla Releases Security Updates for Multiple Products

Scheduled updates for Firefox and Thunderbird

• Severity: Low
• Type: Vulnerability

Cisco Releases Security Updates for Multiple Products

Scheduled updates for multiple Cisco products

• Severity: Low
• Type: Vulnerability

Samba Team Releases Security Updates

Scheduled updates for Samba

• Severity: Low
• Type: Vulnerability

OpenClinic GA Vulnerabilities

Multiple vulnerabilities in an open-source hospital management system

• Severity: Low
• Type: Vulnerability

F5 Releases Security Advisory for BIG-IP Vulnerability

An RCE vulnerability in BIG-IP's TMUI

• Severity: Low
• Type: Vulnerability

EvilQuest Ransomware

Infostealer and data wiper

• Severity: Low
• Type: Malware

Ransom X Ransomware

Ransomware targeting governement agencies

• Severity: Low
• Type: Malware

Cisco Releases Security Advisory for Telnet Vulnerability in IOS XE Software

• Severity: Low
• Type: Vulnerability

Netgear Router Vulnerabilities

• Severity: Low
• Type: Vulnerability

Palo Alto Networks Release Security Update for PAN-OS

• Severity: Low
• Type: Vulnerability

Microsoft Releases Security Updates for Windows 10, Windows Server

• Severity: Low
• Type: Vulnerability

Lucifer Trojan

A hybrid DDoS and cryptomining malware

• Severity: Medium
• Type: Malware

Apache Releases Security Advisory for Apache Tomcat

• Severity: Low
• Type: Vulnerability

Philips Ultrasound Authentication Bypass Vulnerability

• Severity: Low
• Type: Vulnerability

SMBleed SMBv3 Client/Server Information Disclosure Vulnerability

A kernel memory leakage vulnerability affecting SMBv3 in Windows 10 and Windows Server 2019.

• Severity: High
• Type: Vulnerability

Sophos XG Firewall SQL Injection Vulnerability

Sophos has released details of an SQL injection zero day vulnerability affecting their XG Firewall product series. They claim that an unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code or extract sensitive information

• Severity: High
• Type: Vulnerability

SMBGhost SMBv3 Remote Code Execution Vulnerability

A wormable remote code execution vulnerability affecting Windows 10 and Windows Server 2019

• Severity: High
• Type: Vulnerability

GhostCat Request Injection Vulnerability

A request injection vulnerability in Apache Tomcat that could be remotely exploited to control an affected system.

• Severity: Medium
• Type: Vulnerability

Citrix RCE Vulnerability in Multiple Products

Citrix has released details of a remote code execution (RCE) vulnerability and recommended steps for mitigation. Threat actors now appear to be targeting vulnerable devices.

• Severity: High
• Type: Vulnerability