Page 17 - Threat Intelligence 10-28-2019
P. 17
Juniper Networks Releases Junos OS Security Advisory
Juniper Networks has released a security update to address a vulnerability in Junos OS. An attacker
could exploit this vulnerability to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to
review the Juniper Security Advisory and apply the necessary updates.
FTC Promotes International Charity Fraud Awareness Week
The Federal Trade Commission (FTC) has released an article promoting International Charity Fraud
Awareness Week (ICFAW), which runs October 21–25. FTC, the National Association of State
Charities Officials, and state and international partners coordinated this campaign to help both
charities and donors avoid charity fraud. The Cybersecurity and Infrastructure Security Agency
(CISA) encourages charities and donors to review FTC’s article and the following resources for more
information:
• How to Donate Wisely and Avoid Charity Scams Tip
• Avoiding Social Engineering and Phishing Attacks Tip
• ICFAW resources and tips on FTC’s Twitter and Facebook accounts
Vulnerabilities and Indicators of Compromise
➢ Weekly Vulnerability Summary from US-CERT
➢ Talos weekly alerts
➢ FBI Warns Govt Agencies, SMBs to Defend Against E-Skimming Threats
➢ CPDoS attack can poison CDNs to deliver error pages instead of legitimate sites
➢ Billing Provider Billtrust Suffers Outage After Malware Attack
➢ Gustuff return, new features for victims
➢ U.S. Government, Military Personnel Data Leaked By Autoclerk
➢ Major German manufacturer still down a week after getting hit by ransomware
➢ Avast says hackers breached internal network through compromised VPN profile
➢ Winnti Group’s skip-2.0: A Microsoft SQL Server backdoor
“The only truly secure system is one that is powered off, cast in a block of
concrete and sealed in a lead-lined room with armed guards.”
- Gene Spafford,
Purdue University Professor and leading computer security expert
