The US Cybersecuriy and Infrastructure Security Agency (CISA) has issued a warning about successful cyber operations directed against cloud services whose users are afflicted with poor cyber hygiene. The vulnerabilities exploited ( CVE-2020-6418, Chrome Vulnerability in TurboFan CVE-2020-0938, Font Vulnerability on Windows CVE-2020-1020, Font Vulnerability on Windows and CVE-2020-1027, Windows CSRSS Vulnerability) were all been fixed in 2020. The campaign was sophisticated, evasive, and expensive to mount.
Actions big capitol internetthompsonstratechery android#
This week it describes a set of four that were used to craft malicious websites to entrap Windows and Android users. Google’s Project Zero has begun a series on zero-days it’s found undergoing active exploitation in the wild. It seems at the very least to work in support of Indian interests. Its usual tactics include spearphishing, “document exploitation, and DLL Side Loading.” Attribution is uncertain, but SideWinder has been most often reported active against Pakistani military targets, and Alien Labs thinks “with low to medium confidence” that SideWinder is an Indian operation. SideWinder is believed to have been active at least since 2012, but Alien Labs concentrates on operations since 2017. AT&T Alien Labs yesterday released a report on the SideWinder threat actor.
0 kommentar(er)
