Microsoft November 2019 Patch Tuesdaysssssss
Microsoft has released 74 security patches to address vulnerabilities affecting its Operating System (OS) and other related products.
Advisories
Information on high-impact cybersecurity activity affecting Singapore
Filter By:
Ransomware: A Growing Cybersecurity Threat to Businesses
CSA has observed a growing number of ransomware attacks globally. Businesses are advised to remain vigilant, secure systems, encrypt and back up data.
Malicious Email Campaign by NOBELIUM
Microsoft has uncovered a wide-scale malicious email campaign operated by NOBELIUM, the threat actor behind the attacks against SolarWinds. The phishing campaign has targeted around 3,000 individual accounts across more than 150 organisations linked to government agencies, think tanks, consultants, and non-governmental organisations.
Joint Advisory on the Distribution of Ransomware "Deadbolt" Targeting QNAP NAS Devices
The Singapore Police Force and CSA have issued a joint advisory to alert the public on the distribution of ransomware "Deadbolt" targeting QNAP NAS devices.
[SingCERT] Advisory on Multiple Security Vulnerabilities Affecting D-Link DIR-800 Series Routers
On 8th and 12th September 2017, security researchers publicly disclosed details of multiple vulnerabilities affecting D-Link DIR-800 series of routers. ...
[SingCERT] Advisory on Intel Firmware Vulnerabilities
Intel manufactures processors that reside in computers and other devices. These processors execute instructions which will then perform specific actions. On 20th November 2017, Intel announced security vulnerabilities (CVE-2017-5705 to CVE-2017-5712) in Intel Core processors manufactured from 2015 onwards. These vulnerabilities could lead to remote code execution (RCE) on certain PCs, servers, and Internet-of-Things (IoT) platforms.
[SingCERT] Advisory on Critical Microsoft Graphics Component Vulnerabilities
Microsoft has announced the release of several security patches to address vulnerabilities affecting its Operating System and other products. Five of these vulnerabilities with a severity rating of critical in Windows Graphics Component (CVE-2018-1010, CVE-2018-1012, CVE-2018-1013, CVE-2018-1015, CVE-2018-1016) could allow an attacker to hack a user's computer by tricking the user to visit a malicious website.
[SingCERT] Advisory on Mitigating DNS Records Tampering
On 22 Jan 19, the US Department of Homeland Security - Cybersecurity and Infrastructure Security Agency - published an Emergency Directive 19-01 titled “Mitigate DNS Infrastructure Tampering” [1] in response to a recent series of incidents involving the tampering of Domain Name System (DNS) records belonging to government agencies and civilian entities across the globe [2].
