Pantropic Newsletter #16

Posted April 19, 2023

by Sarah


Over 4,000 Sophos Firewall devices vulnerable to RCE attacks


Although organizations from Southeast Asia have been warned and alerted at the time the remote code execution (RCE) bug was being exploited and hotfixes had been rolled out, around 4,000 appliances are still running old and unsupported versions of the software.

(Source: Bleeping Computer)


CISA Alert: Veeam Backup and Replication Vulnerabilities Being Exploited in Attacks


A security researcher from a cybersecurity firm discovered and reported the two major flaws early 2022 and since then, these vulnerabilities are being used to execute attacks such as infection with ransomware, data theft, and denial-of-service, making it imperative that users apply the updates.
(Source: The Hacker News)


FortiOS Flaw Exploited as Zero-Day in Attacks on Government and Organizations


Unknown threat actors with deep understanding of the system and possess skills to reverse engineer parts of the FortiOS exploited a heap-based buffer overflow flaw that could enable an unauthenticated remote attacker to execute arbitrary code via specifically crafted requests.
(Source: The Hacker News)


Cisco Warns of Critical Vulnerability in End-of-Life Routers


Cisco urges owners of these devices to have them replaced as there will be no updates and workarounds to address these vulnerabilities. These flaws could enable remote attackers to bypass authentication or execute arbitrary commands on the underlying operating system of an affected device.
(Source: Infosecurity)


Suspected state hackers hit govt, military targets in S-E Asia


The newly-identified hacker group, dubbed Dark Pink, used phishing e-mails and advanced malware to compromise the defenses of military branches in the Philippines and Malaysia as well as government and religious organizations in Asia and Europe. The cyber attacks that likely originated from the Asia-Pacific region were aimed at corporate espionage, including by stealing documents and recording audio from targeted devices.

(Source: Straits Times)


Stop Breaches.
Drive Business.

Pantropic Online teamed up with Crowdstrike to offer cloud-delivered, next-generation services for endpoint protection, threat intelligence, and response. The CrowdStrike Falcon platform stops breaches by preventing and responding to all types of attacks—both malware and malware-free.

We’ll be happy to walk you through Crowdstrike’s endpoint security solutions for your business. Reach out to us now!


Coopyright © 2021 Pantropic Online Pte Ltd. All rights reserved.