Security Advisories

Situation A critical vulnerability was found in the Zoom meetings platform that affected all Zoom products. Problem The vulnerability could allow a malicious user to control Zoom meeting functions and, if a user was sharing their desktop, take control of the mouse and keyboard. Implication If a malicious user were to take control of the desktop mouse and keyboard, they would have full access of the system. Need Zoom has… Read More

Situation A critical vulnerability was found in the Xorg X.Server package that is used on most major Linux operating systems. Problem The X.Server program does not properly handle and validate arguments for two command line options -modulepath and -logfile. Implication This allows an unprivileged user who has access to the system to elevate their permissions and then execute malicious code or overwrite any file on the system. Need Xorg and… Read More

Situation Two high-severity vulnerabilities were found within the Cisco Umbrella platform. Problem Within the Cisco umbrella platform, the Umbrella Roaming Client runs as System on startup and consumes several files within a directory.  It has been discovered that local users had the ability to write data to this directory. As a result, malicious files could be placed within the directory and ran to create or elevate user permissions. Implication  An… Read More

Situation AZORult is a trojan malware designed to extract data from the attacked system. Data can include passwords, cookies, files, wallet.dat data and more. Problem In July 2018, AZORult was substantially updated with Hermes ransomware. The update includes the ability to steal from non-Microsoft browsers, an improved loader, ability to use system proxies, and added support for cryptocurrency wallets. Implication The new version was seen in a large email campaign on July… Read More