SMBLEED AND MICROSOFT PATCH TUESDAY
Priority: Critical Executive Summary: Researchers at ZecOps have publicly disclosed a Proof of Concept (PoC) for a vulnerability that they discovered in SMBv3 whilst investigating SMBGhost [1]. They have named this vulnerability SMBleed (CVE-2020-1206). Although, by itself, exploiting the vulnerability only achieves information disclosure, the researchers have combined the attacks of SMBleed (as advised yesterday) […]
SMBGHOST (CVE-2020-0796) REMOTE CODE EXECUTION PROOF OF CONCEPT
Priority: Critical Executive Summary: A functional remote code execution (RCE) proof of concept has been publicly released for CVE-2020-0796 (a.k.a. SMBGhost, NexternalBlue, CoronaBlue). Previous research was only able to achieve local privilege escalation (LPE).[1] SMBGhost is caused by a flaw in the SMBv3 protocol that mishandles certain requests. An unauthenticated attacker can target an SMBv3 […]
To CISO or CISOaaS, that is the question
Data has become one of the most valuable currencies in the world that we now work and live in. Cyber-attacks are becoming more frequent, with the end to stopping cyber-criminals nowhere in sight. In a digital world where technology evolves rapidly and data use and consumption are on the rise, there is an increasing threat […]
GDPR: 2 years on – “I’ve updated my privacy policy; I must be compliant.”
May 2018 saw one of the biggest changes in data protection history across Europe, and the rest of the world; the General Data Protection Regulation, more commonly known as the GDPR. Just like cyber security, data protection has now found itself a place on the agenda in the majority of boardrooms as requirements have led […]
Kick-Starting SOCaaS Efforts with Azure Sentinel
MAZE RANSOMWARE ATTACKS
Priority: High Executive Summary: Cognizant, an IT services provider based in the US, has confirmed it has fallen victim to the Maze ransomware. Their statement was released over the weekend (Saturday 18th April), confirming that the security incident had caused disruption to some of their customers, and was followed by an update on Sunday 19th […]
April 2020
View our Cyber Bulletin for April here.
Collaboration Growing Pains
I’m going to resist using words like “unprecedented” and phrases like “the new normal” as much as possible, but we really can’t ignore that things have changed quickly in the last few weeks. Not so much people working from home – that’s been a feature of many of our (admittedly privileged IT worker) lives for […]
ITC Secure and JT Group announce partnership to provide world-class managed security services to the Channel Islands
ITC Secure forms new strategic partnership with Jersey headquartered JT Group (formerly Jersey Telecom) a full-service Tier-1 global consumer and business enterprise service provider, to expand managed security services and cyber offerings London, 20 April 2020: ITC Secure (ITC), the managed security service provider (MSSP) and specialist cyber advisory firm, and Jersey-based JT Group (JT), […]
Microsoft Security Stack – will there still be room for specialists?
As the functionality and capability of the Microsoft security suite continues to grow, and the results of comparative testing from industry experts get more impressive with each passing month, where is this all going – and what will the specialist security market look like in 5 years? Here at ITC we have been very impressed […]