Page 16 - Threat Intelligence 9-5-2019
P. 16

Threat Alerts




           And Advisories









        NCSC Releases UK Cyber Incident Trends Report
        The United Kingdom (UK) National Cyber Security Centre (NCSC) has released a report detailing cyber incident
        trends in the UK from October 2018 to April 2019. The report provides technical guidance on how to defend
        against, and recover from, the following cyber threats: ransomware, phishing, vulnerability scanning, and
        attacks targeting supply chain and Office 365 cloud services. The Cybersecurity and Infrastructure Security
        Agency (CISA) encourages administrators to review the NCSC report and the following CISA resources for more
        information on improving cybersecurity posture:
                • Ransomware page
                • Avoiding Social Engineering and Phishing Attacks
                • Securing Network Infrastructure Devices
                • APTs Targeting IT Service Provider Customers
                • Microsoft Office 365 Security Observations


        Samba Releases Security Updates
        The Samba Team has released security updates to address a vulnerability in all versions of Samba from 4.9.0
        onward. An attacker could exploit this vulnerability to obtain sensitive information. The Cybersecurity and
        Infrastructure Security Agency (CISA) encourages users and administrators to review the Samba Security
        Announcement for CVE-2019-10197 and apply the necessary updates and workarounds.



        Mozilla Releases Security Updates for Firefox and Firefox ESR
        Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could
        exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and
        Infrastructure Security Agency (CISA) encourages users and administrators to review the Mozilla Security
        Advisories for Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9.


        Supermicro Releases Security Updates
        Supermicro has released security updates to address vulnerabilities affecting the Baseboard Management
        Controller (BMC) component of Supermicro X9, X10, and X11 platforms. A remote attacker could exploit some
        of these vulnerabilities to take control of an affected system.
        The Cybersecurity and Infrastructure Security Agency (CISA) encourages administrators to review Supermicro’s
        Security Advisory and Security Vulnerabilities Table and apply the necessary updates and recommended
        mitigations.















                                                    www.accumepartners.com
                                                                                                                    16
   11   12   13   14   15   16   17   18   19   20