Page 16 - Threat Intelligence 8-7-2019
P. 16

Threat Alerts




           And Advisories












            El Paso and Dayton Tragedy-Related Scams and Malware Campaigns
            In the wake of the recent shootings in El Paso, TX, and Dayton, OH, the Cybersecurity and
            Infrastructure Security Agency (CISA) advises users to watch out for possible malicious
            cyber activity seeking to capitalize on these tragic events. Users should exercise caution in
            handling emails related to the shootings, even if they appear to originate from trusted
            sources. Fraudulent emails often contain links or attachments that direct users to phishing
            or malware-infected websites. Emails requesting donations from duplicitous charitable
            organizations are also common after tragic events.


            VMware Releases Security Updates for Multiple Products
            VMware has released a security advisory to address vulnerabilities affecting multiple
            products. An attacker could exploit one of these vulnerabilities to take control of an
            affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages
            users and administrators to review VMware Security Advisory VMSA-2019-0012 and apply
            the necessary updates and workarounds.

            Cylance Antivirus Vulnerability
            The CERT Coordination Center (CERT/CC) has released information on a vulnerability
            affecting Cylance Antivirus products. A remote attacker could bypass Cylance antivirus
            detection. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users
            and administrators to review CERT/CC Vulnerability Note VU#489481 and the Cylance
            Resolution for BlackBerry Cylance Bypass webpage for patch information and additional
            recommended workarounds.


            Cisco Releases Security Updates
            Cisco has released security updates to address a vulnerability in Cisco Nexus 9000 Series
            Fabric Switches. An attacker could exploit this vulnerability to take control of an affected
            system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and
            administrators to review the Cisco Security Advisory and apply the necessary updates. This
            vulnerability affects Cisco Nexus 9000 Series Fabric Switches in ACI mode if they are
            running a Cisco Nexus 9000 Series ACI Mode Switch Software release prior to 13.2(7f) or
            any 14.x release.















                                                    www.accumepartners.com                                           16
   11   12   13   14   15   16   17   18   19