Please see Security Advisories for the week ending September 25, 2020
- Apple Releases Security Updates
- Cisco Releases Security Updates for Multiple Products
- Mozilla Releases Security Updates for Firefox and Firefox ESR
- LokiBot Malware on The Rise
________________________________
Apple Releases Security Updates
Situation
Apple has released security updates to address vulnerabilities in multiple products including: macOS Catalina, Mojave, and High Sierra.
Problem
Apple has identified several security vulnerabilities for its products that a remote attacker can exploit and take control of affected systems. Unpatched systems could allow attackers to: cause denial of service, execute malicious code, and gain control of compromised systems.
Implication
Failure to patch systems could result in loss of control of affected systems. Possible compromise of system and network integrity.
Need
Apple advises patching to the latest version of MacOS Catalina 10.15.7, security update 2020-005 for Mojave, security update 2020-005 for High Sierra.
For a brief overview:
https://us-cert.cisa.gov/ncas/current-activity/2020/09/25/apple-releases-security-updates
For a more technical overview:
https://support.apple.com/en-us/HT211849
________________________________
Cisco Releases Security Updates for Multiple Products
Situation
Cisco has discovered and patched multiple vulnerability’s in multiple products that if exploited could allow a remote attacker to obtain sensitive information or compromise a network device.
Problem
Cisco has discovered and patched multiple vulnerabilities in their IOS XE product lines that if exploited could allow a remote attacker to compromise the devices if left unpatched.
Implication
if the vulnerability is exploited it could allow a remote attacker to obtain sensitive information or compromise a network device
Need
Cisco recommends installing the latest updates to their products to patch vulnerability’s in the products.
For a brief overview:
For a technical overview:
https://tools.cisco.com/security/center/publicationListing.x
________________________________
Mozilla Releases Security Updates for Firefox and Firefox ESR
Situation
Mozilla has released updates that address vulnerabilities in Firefox 81 and Firefox ESR 78.3.
Problem
Mozilla has patched several high-level CVEs in Firefox and Firefox ESR that include vulnerabilities such as use after free, XSS, and memory bugs.
Implication
Attackers exploiting these bugs can run arbitrary code that could compromise the system.
Need
Please update Firefox to version 81 or higher and Firefox ESR to version 78.3 or higher as soon as possible.
For a more detailed overview on FireFox 81:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-42/
For a more detailed overview on FirFox ESR 78.3
https://www.mozilla.org/en-US/security/advisories/mfsa2020-43/
________________________________
Situation
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a security alert alerting to a notable increase in the use of LokiBot malware by malicious cyber actors since July 2020.
Problem
LokiBot is used as a credential and information stealing malware, stealing credentials through the use of a keylogger to monitor browser and desktop activity. LokiBot can also create a backdoor into infected systems to allow an attacker to install additional payloads. Attackers typically use LokiBot to target Windows and Android operating systems and distribute the malware via email, malicious websites, text, and other private messaging services.
Implication
If an attacker is able to successfully install LokiBot, it could allow the attacker to steal sensitive information and passwords from the affected device. The attacker could also use LokiBot to install additional malware on the infected device further compromising the system.
Need
To protect against LokiBot, it's recommended that users only download software and attachments from trusted sources. It is also recommended to make sure all the software being used by the system is up to date, as well as having some anti-malware software on the device. Additional information and ways to mitigate LokiBot can be found in the link below.
For a brief overview: