New critical remote code execution vulnerabilities in Microsoft’s enterprise Exchange Server have been discovered, and the Australian Cyber Security Centre (ACSC) is urging users to apply the patches for them as soon as possible to prevent systems compromises. The vulnerabilities are easy to exploit, do not require any user interaction, and affect Exchange Server 2013,…
[Leer en español] Russia yesterday summoned the U.S. ambassador to Moscow, John Sullivan, in response to the cyber espionage sanctions adopted by Washington, which include the expulsion of ten Russian diplomats. Russian Foreign Ministry spokeswoman Maria Zakharova advanced that the conversation with the ambassador “will not be to the liking of the U.S. side.” “Such…
Celsius Email System Suffers Security Breach | IT Security News 16. April 2021 Blockchain-based marketplace platform Celsius disclosed it has suffered a security breach with one of its third-party service providers. The breach exposed the personal information of its customers, leading to phishing attacks. According to their official statement, threat actors gained access to a…
Russia on Friday announced it would expel 10 US diplomats and take other retaliatory moves in response to sanctions imposed on Russia by US President Joe Biden a day earlier, The Associated Press reports. Russian Foreign Minister Sergey Lavrov also said Moscow will add eight US officials to its sanctions list and move to restrict…
Microsoft Exchange Server Vulnerabilities, Patch Now | IT Security News Threat Watch – Binary Defense 14. April 2021 Microsoft has released a security update for the Exchange Server that addresses four vulnerabilities with severity scores ranging from high to critical. All the security flaws lead to remote code execution on a vulnerable machine and were…
The Employee Benefits Security Administration of the United States Department of Labor (“EBSA”) recently published guidance regarding cybersecurity best practices for recordkeepers and service providers responsible for plan related information technology systems and data for ERISA-covered plans, including 401k and other pension plans. The EBSA counseled that a plan’s service providers should implement the following…
The Russian foreign ministry said John Sullivan, the US ambassador to Russia, should return home for consultations too. Washington said its own sanctions were payback for Russia interfering in last year’s US election, cyber hacking, bullying Ukraine and other alleged malign actions. Russia denies all the US allegations. Retaliation Moscow’s response was mostly tit-for-tat. It…
Remember the slew of vulnerabilities putting Microsoft Exchange servers at risk of various attacks? ProxyLogon Vulnerabilities Used in Cryptojacking Attacks Now another danger should be added to the threat list – cryptojacking also known as cryptocurrency mining. SophosLabs researchers discovered that the attackers exploiting Exchange servers are now using the compromised servers to host a…
Fraud Management & Cybercrime , General Data Protection Regulation (GDPR) , Governance & Risk Management Data Protection Commission Sees Likely Violations in Wake of Latest Mega-Breach Mathew J. Schwartz (euroinfosec) • April 16, 2021 Facebook’s headquarters in Menlo Park, California Ireland’s privacy regulator has launched an investigation into Facebook after personal information for…
The former UK foreign secretary Sir Malcolm Rifkind has condemned the sentencing of pro-democracy media tycoon Jimmy Lai to 14 months in prison after being found guilty of unauthorised assembly. Sir Malcolm told BBC World News: “It can best be described as rule by law, not rule of law. This is essentially Beijing justice. Not…
