TTCSIRT-082.012418: TT-CSIRT Advisory – KRACK Security Update
WPA2 Key Reinstallation Attacks (KRACKs) Date first published: 23/1/2018 1.0 Introduction TT-CSIRT wishes to advise that weaknesses have been discovered in the Wi-Fi Protected Access 2 (WPA2) protocol used…
Read MoreTTCSIRT-081.012418: TT-CSIRT Advisory – Apple Security Updates
Apple has released security updates stating that the following vulnerabilities have been discovered in Safari, watchOS, iOS, High Sierra, Sierra, El Capitan, and tvOS: a) A certificate evaluation issue existed…
Read MoreTTCSIRT-080.012218: TT-CSIRT Advisory – Lenovo Security Updates
Lenovo has released a security update for its Enterprise Network Operating System (ENOS) stating that an authentication bypass mechanism known as “HP Backdoor” was discovered during a Lenovo security audit…
Read MoreTTCSIRT-079.012218: TT-CSIRT Advisory – Oracle Security Updates
Oracle has released a January 2018 Critical Patch Update to fix certain products vulnerable to Spectre (CVE-2017-5753, CVE-2017-5715) and Meltdown (CVE-2017-5754) Intel processor vulnerabilities. Some of the products affected include:…
Read MoreMeltdown Side Channel Vulnerability Report
On affected systems, meltdown enables an adversary to read memory of other processes or virtual machines in the cloud without any permissions or privileges, affecting millions of customers and virtually…
Read MoreSpectre SideChannel Vulnerability Report
Spectre attacks involve inducing a victim to speculatively perform operations that would not occur during correct program execution and which leak the victim’s confidential information via a side channel to…
Read More