Preventing Ransomware with Intelligence
Recently several high-profile ransomware incidents have affected the country, these include Colonial Pipeline, JBS, and FujiFilm. These attacks do not occur in a vacuum and use known Indicators of Compromise (IOCs) previously published in Cyber Threat Intelligence (CTI). Centripetal’s massive library of CTI contained these indicators for months before the ransomware attacks occurred and can be […]
Microsoft Exchange Recent Vulnerabilities and Targeted Attacks
On Tuesday, March 2nd, Microsoft published KB5000871[1] that contained security updates for vulnerabilities in Microsoft Exchange. These vulnerabilities have been identified being exploited as zero-day in the wild prior to the release of these updates. Microsoft recommends applying the security patches from this knowledgebase article immediately to mitigate these vulnerabilities. Reports from across the cybersecurity […]
CleanINTERNET Blocks Potential Exploit Attempts
Centripetal Networks observed 472,584 potential exploitation attempts from Iraq targeting a SonicWall VPN host only hours after SonicWall published advisory SNWLID-2020-0010[1]. Centripetal’s CleanINTERNET service was able to block all of these inbound attempts targeting the vulnerable infrastructure in order to defend the environment. This advisory was assigned CVE-2020-5135[2] with a CVSSv3 of 9.4 as it […]
