Shortcuts
|
Security InformationThis page is dedicated to security, it includes local security information, as well as a number of syndicated security feeds, alerts, tools and news from major security portals. This page aims to provide a single security information access point, helping you stay current with recent security threats. You can check the SG Security FAQ and visit the SG Security forum with any questions you might have. SG Security ScanThe SG Security Scan is a great tool that tests a number of ports on your computer for the most common vulnerabilities.SG Security ScannerVulterable PortsCommonly Open PortsSG Ports - comprehensive database of known TCP/UDP ports
SG Security ArticlesGeneral Security GuideHow To Crack WEP and WPA Wireless NetworksIRDP Security Vulnerability in WindowsWhy encrypt your online traffic with VPN ?Latest Threats - SymantecBackdoor.Fakeslic - (2019.03.12) Risk Level: Very Low. Type: Trojan.Backdoor.Filensfer - (2019.03.12) Risk Level: Very Low. Type: Trojan. W32.Extrat.C - (2019.03.10) Risk Level: Very Low. Type: Trojan. Exp.CVE-2019-0808 - (2019.03.12) Risk Level: Very Low. Type: Trojan. Exp.CVE-2019-0797 - (2019.03.12) Risk Level: Very Low. Type: Trojan. Trojan.Bitartra - (2019.03.07) Risk Level: Very Low. Type: Trojan. Backdoor.Xoratag - (2019.03.04) Risk Level: Very Low. Type: Trojan. Backdoor.Sarhus - (2019.03.04) Risk Level: Very Low. Type: Trojan. SONAR.GandCrab gen2 - (2019.03.03) Risk Level: Very Low. Type: Trojan, Virus, Worm. Trojan.Tinukebot.B gm - (2019.02.27) Risk Level: Very Low. Type: Trojan.
Latest Security Advisories (US-CERT)New Zealand Tragedy-Related Scams and Malware Campaigns (2019.03.15) Original release date: March 15, 2019 | Last revised: March 18, 2019 In the wake of the recent New Zealand mosque shootings, the Cybersecurity and Infrastructure Security Agency (CISA) advises users to watch out for possible malicious cyber activity seeking to capitalize on this tragic event. Users should exercise caution in handling emails related to the shootings, even if they appear to originate from trusted sources. Fraudulent emails often contain links or attachments that direct users to phishing or malware-infected websites. Emails requesting donations from duplicitous charitable organizations are also common after tragic events. Be wary of fraudulent social media pleas, calls, texts, donation websites, and door-to-door solicitations relating to the event. To avoid becoming a victim of malicious activity, users and administrators should consider taking the following preventive measures:
Intel Releases Security Advisories on Multiple Products (2019.03.15) Original release date: March 15, 2019 Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Intel Product Security Center Advisories page, apply the necessary mitigations, and refer to software vendors for appropriate patches, when available. VMware Releases Security Updates for Workstation and Horizon (2019.03.15) Original release date: March 15, 2019 VMware has released security updates to address vulnerabilities affecting Workstation 14 and 15, and Horizon 6 and 7. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review VMware Security Advisories VMSA-2019-0002 and VMSA-2019-0003 and apply the necessary updates. Microsoft Releases Security Update for Azure Linux Guest Agent (2019.03.14) Original release date: March 14, 2019 Microsoft has released an update to address a vulnerability in Azure Linux Guest Agent. An attacker could exploit this vulnerability to obtain access to sensitive information. MS-ISAC Releases Security Primer on TrickBot Malware (2019.03.14) Original release date: March 14, 2019 The Multi-State Information Sharing and Analysis Center (MS-ISAC) has released a security primer on TrickBot malware. TrickBot is a modular banking Trojan that targets users financial information and acts as a dropper for other malware. An attacker can leverage TrickBots modules to steal banking information, conduct system and network reconnaissance, harvest credentials, and achieve network propagation. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review MS-ISACs White Paper: Security Primer TrickBot for more information and best practice recommendations. WordPress Releases Security Update (2019.03.14) Original release date: March 14, 2019 WordPress 5.1 and prior versions are affected by a vulnerability. An attacker could exploit this vulnerability to take control of an affected website. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the WordPress Security and Maintenance Release and upgrade to WordPress 5.1.1. Cisco Releases Security Updates (2019.03.13) Original release date: March 13, 2019 Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploitone of these vulnerabilities to cause a denial-of-service condition. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Advisories and apply the necessary updates:
Google Releases Security Updates for Chrome (2019.03.13) Original release date: March 13, 2019 Google has released Chrome version 73.0.3683.75 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary updates.
|