Page 17 - Threat Intelligence 10-10-2019
P. 17
NSA Releases Advisory on Mitigating Recent VPN Vulnerabilities
The National Security Agency (NSA) has released an advisory on advanced persistent threat (APT)
actors exploiting multiple vulnerabilities in Virtual Private Network (VPN) applications. A remote
attacker could exploit these vulnerabilities to take control of an affected system. The Cybersecurity
and Infrastructure Security Agency (CISA) encourages administrators to review NSA's Cybersecurity
Advisory and CISA's Current Activity on Vulnerabilities in Multiple VPN Applications for more
information and apply the necessary updates or mitigations.
Vulnerabilities and Indicators of Compromise
➢ Weekly Vulnerability Summary from US-CERT
➢ Talos weekly alerts
➢ ESET discovers Attor, a spy platform with curious GSM fingerprinting
➢ Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware
➢ Unanswered questions in TransUnion Canada data breach
➢ New Phishing Sextortion Campaign Using Alternative Crypto Currencies to Evade
Detection
➢ NSA Cybersecurity Advisory: Malicious Cyber Actors Leveraging VPN Vulnerabilities for
Attack; Check VPN Products for Upgrade
➢ 1 Million People Had Their Medical Data Exposed in Tū Ora Breach
➢ Hackers continue to exploit the Drupalgeddon2 flaw in attacks in the wild
➢ PoS malware infections impacted four restaurant chains in the U.S.
“As cybersecurity leaders, we have to create our message of influence
because security is a culture and you need the business to take place and be
part of that security culture.” — Britney Hommertzheim, Director,
Information Security, AMC Theatres, at SecureWorld Kansas City
