TT-CSIRT – 443.30.07.25 – Vulnerabilities found in some Dahua products

TT-CSIRT – 443.30.07.25 – Vulnerabilities found in some Dahua products

Please be advised that Dahua has released a security update to address two critical buffer overflow vulnerabilities CVE-2025-31700 and CVE-2025-31701 reported by the Bitdefender IoT Research Team. Impact Affected Products         CVE ID Affected Models Affected Version CVE-2025-31700 CVE-2025-31701 IPC-1XXX SeriesIPC-2XXX Series IPC-WX Series IPC-ECXX Series SD3A Series SD2A Series SD3D Series SDT2A Series SD2C Series […]

TT-CSIRT – 442.20.07.25 – SharePoint Vulnerability

Microsoft has advised of active attacks targeting on-premises SharePoint Server customers, SharePoint Online M365 is not impacted. The attacks are exploiting a variant of CVE-2025-49706 and being assigned CVE-2025-53770 with a patch currently not available. Currently the Microsoft team is actively working to release a security update and will provide additional details as they are […]

TT-CSIRT – 441.10.07.25 – Fortinet Security Advisories – SQL injection in GUI

Please be advised of the critical vulnerability CVE-2025-25257, which affects FortiWeb. This issue stems from improper handling of special characters in SQL commands, leading to a SQL Injection vulnerability (CWE-89). This vulnerability enables an attacker to execute unauthorized SQL code by sending specially crafted HTTP or HTTPS requests. Affected Versions and solutions: Version Affected Solution […]

TT-CSIRT – 439.09.04.25. Security Update – FortiSwitch Vulnerability

Please be advised that Fortinet has released a security update to address a critical vulnerability (CVE-2024-48887) found in the FortiSwitch GUI. This vulnerability could enable a remote unauthenticated attacker to alter admin passwords through a specifically designed request. Impact Affected Versions Version Affected Solution FortiSwitch 7.6 7.6.0 Upgrade to 7.6.1 or above FortiSwitch 7.4 7.4.0 […]

WhatsApp Phishing Campaign Alert

TTCSIRT has been made aware of an ongoing WhatsApp phishing campaign targeting users. Attackers are impersonating known contacts to trick victims into compromising their accounts. Methods of Attack: Deceptive Message: Victims receive messages from seemingly legitimate contacts, often requesting a favor or vote. This message may look like the following: “Blessings hope all is well […]

TT-CSIRT – 438.05.11.24. Security Update – Microsoft SharePoint Remote Code Execution Vulnerability

Please be advised of the following critical Microsoft SharePoint vulnerability, CVE-2024-38094, has been listed by our partners at the Cybersecurity & Infrastructure Security Agency (CISA) in their “Known Exploited Vulnerabilities Catalogue”. TTCSIRT encourages administrators to visit the following link for more information and take necessary actions immediately: CVE-2024-38094 – Security Update Guide – Microsoft – […]

TT-CSIRT -437.25.10.24. Cisco Event Response: October 2024 Security Advisory Bundle for ASA, FMC, and FTD Software

On October 23, 2024, Cisco issued their semi-annual Security Advisory Bundle for ASA, FMC, and FTD software. This release contains 35 Cisco Security Advisories that describe 51 vulnerabilities impacting Cisco ASA, FMC, and FTD devices. Cisco has released software upgrades to address the issues. The following identifies Cisco Security content that is associated with this […]

TTCSIRT – 435.26.09.24: Phishing Alert

The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from a GovNeTT user’s compromised email “akesha.hazel@gov[.]tt’”. In this respect we are advising all persons not to engage with any emails received from the aforementioned email address with the following details: Persons who receive the email are advised […]

TTCSIRT 434.25.09.24: Keep Your Firewall Up to Date

Regularly updating your firewall is essential for maintaining a strong security posture, protecting your network and data, and mitigating the risks associated with cyber threats. From the Trinidad and Tobago perspective, the exploitation of outdated and unpatched firewall systems is one of the most successful attack vectors executed against local organizations. This email serves as […]

TTCSIRT – 433.23.09.24: Phishing Alert

The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from the Military Lead Training Academy’s (MiLAT) email “Milatacademydean@gov[.]tt’”. In this respect we are advising all persons not to engage with any emails received from the aforementioned email address with the following details: Persons who receive the email […]