TTCSIRT has been made aware of an ongoing WhatsApp phishing campaign targeting users. Attackers are impersonating known contacts to trick victims into compromising their accounts. Methods of Attack: Deceptive Message: Victims receive messages from seemingly legitimate contacts, often requesting a favor or vote. This message may look like the following: “Blessings hope all is well […]
Please be advised of the following critical Microsoft SharePoint vulnerability, CVE-2024-38094, has been listed by our partners at the Cybersecurity & Infrastructure Security Agency (CISA) in their “Known Exploited Vulnerabilities Catalogue”. TTCSIRT encourages administrators to visit the following link for more information and take necessary actions immediately: CVE-2024-38094 – Security Update Guide – Microsoft – […]
On October 23, 2024, Cisco issued their semi-annual Security Advisory Bundle for ASA, FMC, and FTD software. This release contains 35 Cisco Security Advisories that describe 51 vulnerabilities impacting Cisco ASA, FMC, and FTD devices. Cisco has released software upgrades to address the issues. The following identifies Cisco Security content that is associated with this […]
The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from a GovNeTT user’s compromised email “akesha.hazel@gov[.]tt’”. In this respect we are advising all persons not to engage with any emails received from the aforementioned email address with the following details: Persons who receive the email are advised […]
Regularly updating your firewall is essential for maintaining a strong security posture, protecting your network and data, and mitigating the risks associated with cyber threats. From the Trinidad and Tobago perspective, the exploitation of outdated and unpatched firewall systems is one of the most successful attack vectors executed against local organizations. This email serves as […]
The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from the Military Lead Training Academy’s (MiLAT) email “Milatacademydean@gov[.]tt’”. In this respect we are advising all persons not to engage with any emails received from the aforementioned email address with the following details: Persons who receive the email […]
A large-scale outage has occurred due to a broken CrowdStrike cybersecurity update, rendering Windows computers unable to start and affecting much of the world’s infrastructure. The problem stems from an issue with CrowdStrike’s Falcon Sensors, which encountered problems following an early Friday morning update. PLEASE BE ADVISED: Only accept information from the CrowdStrike support […]
Remote-access VPN systems allow off-site users to tunnel into protected networks, making these entry points vulnerable to exploitation by threat actors. From the Trinidad and Tobago perspective, the exploitation of outdated remote-access VPN systems is one of the most successful attack vectors executed against local organizations. This email serves as a critical reminder about the […]
A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. The severity of the vulnerability is critical and it carries a CVSS4.0 score of 10. Fixes for PAN-OS […]
Microsoft has released security updates to address vulnerabilities in multiple products; the most severe of which could allow for remote code execution. Additionally, two (2) zero day vulnerabilities related to Microsoft products have been identified that are CVE-2024-21351 – Windows SmartScreen Security Feature Bypass Vulnerability and CVE-2024-21412 – Internet Shortcut Files Security Feature Bypass Vulnerability.Affected […]
