Author Archives: CSIRT

CISA Issues ICS Advisory for New Vulnerabilities in Treck TCP/IP Stack

Security updates available for the Treck TCP/IP stack address two critical vulnerabilities leading to remote code execution or denial-of-service. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory to warn organizations using industrial control systems (ICS) about the risks posed by these flaws. A low-level TCP/IP software library, the Treck TCP/IP stack […]

This ‘off the shelf’ Tor backdoor malware is now a firm favorite with ransomware operators

SystemBCis making its mark as a popular tool used in high-profile ransomware campaigns. A Remote Access Trojan (RAT) on sale in underground forums has evolved to abuse Tor when maintaining persistence on infected machines. On Thursday, Sophos Labs’ Sivagnanam Gn and Sean Gallagher revealed ongoing research into the malware, which has been in the wild […]

Google Chrome, Microsoft Edge Browser Extensions Infected With Malware Hit 3 Million Users: Avast

Google Chrome and Microsoft Edge extensions containing malware have been downloaded by around 3 million users, security research firm Avastclaims. Its researchers say that they were able to identify at least 28 extensions available on Chrome and Edge browsers that contained malware. These add-ons were billed to facilitate downloading pictures, videos, or other content from […]

SolarWinds Hack May be Tip of Iceberg, Evidence of Multiple Hacks Found

The United States’ cybersecurity agency says it has evidence of multiple ways in which a massive, months-long software supply chain attack might have infiltrated a wide range of public and private sector systems, in addition to known malware that infected software company SolarWinds. The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) released […]