THREAT HORIZON – MICROSOFT ADFS VULNERABILITY ALLOWS ATTACKERS TO BYPASS MFA

The following was circulated to our NetSure360° managed service customers on Wednesday 15th August 2018. Priority: High Executive Summary: A newly discovered vulnerability in Microsoft’s Active Directory Federation Services (ADFS) lets threat actors bypass multifactor authentication (MFA), if they have full access to another user’s credentials on the same ADFS service. This means the second factor […]

THREAT HORIZON: ORACLE DATABASE (CVE-2018-3110)

The following was circulated to our NetSure360° managed service customers on Monday 13th August 2018. Priority: Critical Executive Summary: Oracle released an advisory on the 10th August 2018, advising that the Java VM component of Oracle Database versions 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18 are affected by an easily exploitable vulnerability that allows a low privileged attacker to […]