Page 17 - Threat Intelligence 10-18-2019
P. 17
WordPress Releases Security Update
WordPress 5.2.3 and prior versions are affected by multiple vulnerabilities. An attacker
could exploit some of these vulnerabilities to take control of an affected website.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and
administrators to review the WordPress Security Release and upgrade to WordPress 5.2.4.
Google Releases Security Updates for Chrome
Google has released Chrome version 77.0.3865.120 for Windows, Mac, and Linux. This
version addresses vulnerabilities that an attacker could exploit to take control of an affected
system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and
administrators to review the Chrome Release and apply the necessary updates.
Vulnerabilities and Indicators of Compromise
➢ Weekly Vulnerability Summary from US-CERT
➢ Talos weekly alerts
➢ Checkrain fake iOS jailbreak leads to click fraud
➢ Sudo Flaw Lets Linux Users Run Commands As Root Even When They're Restricted
➢ Shipping giant Pitney Bowes hit by ransomware
➢ IoT: a malware story
➢ INTERNET ORGANISED CRIME THREAT ASSESSMENT (IOCTA) 2019
➢ Talos experts found 11 flaws in Schneider Electric Modicon Controllers
➢ Apple under scrutiny for sending Safari browsing data to China’s Tencent (Updated)
➢ These are the 29 countries vulnerable to Simjacker attacks
➢ Sodinokibi Ransomware: Following the Affiliate Money Trail
“I don't think we can afford to wait when it comes to cybersecurity. I think
that every day we wait, if an attack occurs - and we're getting hit every day -
but if a greater attack occurs, it's going to be on the head of Congress for not
acting.” - Michael McCaul, Politician
