Monthly Security Digest for January
Every month, we are covering the major security events for our clients. Please find an exclusive selection below.
APT37 Targets Stock Investors
North Korean threat group Thallium aka APT37 has targeted users belonging to a private stock
investment messenger service in a software supply chain attack. The attackers have produced a
Windows executable using Nullsoft Scriptable Install System (NSIS) which contains malicious code in addition to the legitimate files from a legitimate stock investment application program.
Backdoor Account Discovered In Zyxel firewalls, VPN gateways
CyberSecurity researchers at Eye Control have discovered a hardcoded admin-level backdoor account in more than 100,000 Zyxel firewalls, VPN gateways, and access point controllers.
DNSpooq Bugs Allows Attackers to Hijack Millions of Devices
CyberSecurity researchers at JSOF research labs have disclosed seven Dnsmasq vulnerabilities dubbed as DNSpooq which can be exploited to cause DNS cache poisoning, remote code execution, and denial-of-service attacks against millions of affected devices.