Security Alerts - The Revolt Group

A New Evolving Wormable Botnet Malware Targeting Linux

November 11, 2021 Linux

Status: Informational Researchers from Qihoo 360’s Netlab security team have released details of a new evolving botnet called “Abcbot” that has been observed in the wild with worm-like propagation features to infect Linux systems and launch distributed denial-of-service (DDoS) attacks against targets. Revolt Recommends: source:https://thehackernews.com/2021/11/abcbot-new-evolving-wormable-botnet.html

Zero-Day Disclosure: Palo Alto Networks GlobalProtect VPN

November 11, 2021 Best Practice, Technology

Status: Informational On November 10, 2021 Palo Alto Networks (PAN) provided an update that patched CVE-2021-3064 which was discovered and disclosed by Randori. This vulnerability affects PAN firewalls using the GlobalProtect Portal VPN and allows for unauthenticated remote code execution on vulnerable installations of the product. The issue affects multiple versions of PAN-OS 8.1 prior […]

Critical RCE Vulnerability Reported in Linux Kernel’s TIPC Module

November 4, 2021 Linux

Status: Informational Cybersecurity researchers have disclosed a security flaw in the Linux Kernel’s Transparent Inter Process Communication (TIPC) module that could potentially be leveraged both locally as well as remotely to execute arbitrary code within the kernel and take control of vulnerable machines. Revolt Recommends: Update your Linux version to the latest version source:https://thehackernews.com/2021/11/critical-rce-vulnerability-reported-in.html

Hardcoded SSH Key in Cisco Policy Suite Lets Remote Hackers Gain Root Access

November 4, 2021 Cisco

Status: Informational Cisco Systems has released security updates to address vulnerabilities in multiple Cisco products that could be exploited by an attacker to log in as a root user and take control of vulnerable systems. Tracked as CVE-2021-40119, the vulnerability has been rated 9.8 in severity out of a maximum of 10 on the CVSS […]

Google Releases Security Updates for Chrome

October 29, 2021 Chrome, Google, Linux, Mac, Windows

Status: Informational Google has released Chrome version 95.0.4638.69 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. Some of these vulnerabilities have been detected in exploits in the wild. Revolt Recommends: Update Google Chrome: 1. On your computer, open Chrome 2. At the […]

Apple Confirms iOS 15 Zero-Day Exploitation

October 11, 2021 iOS

Status: Informational Apple rushes out iOS 15.0.2 to address a remote code execution vulnerability that is being actively exploited Revolt Recommends: Update iOS Devices 1. Go to Settings > General > Software Update 2. Tap Download and Install source:https://www.securityweek.com/apple-confirms-ios-15-zero-day-exploitation