Tricky Chinese-Targeted Trojan Bypasses Authentication

A FortiGuard Labs Threat Analysis Report Introduction FortiGuard Labs uncovered a new campaign targeted at Chinese-speakers using malware that bypasses normal authentication by exploiting known WinRAR file (cve-2018-20250) and RTF file (cve-2017-11882) vulnerabilities. This attack uses a watering hole attack strategy to target Chinese-speaking users by delivering malware through a Continue Reading

cPanel TSR-2019-0004 Full Disclosure | cPanel Newsroom

Yesterday cPanel released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. Below is the full disclosure of the changes included in that update. Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels. If your deployed cPanel & WHM servers Continue Reading

TSR-2019-0004 Announcement | cPanel Newsroom

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores ranging from 3.3 Continue Reading

cPanel TSR-2019-0003 Full Disclosure | cPanel Newsroom

Yesterday cPanel released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. Below is the full disclosure of the changes included in that update. Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels. If your deployed cPanel & WHM servers Continue Reading

cPanel TSR-2019-0003 Announcement | cPanel Newsroom

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores ranging from 3.3 Continue Reading

cPanel TSR-2019-0003 Full Disclosure | cPanel Newsroom

Yesterday cPanel released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. Below is the full disclosure of the changes included in that update. Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels. If your deployed cPanel & WHM servers Continue Reading

cPanel TSR-2019-0003 Announcement | cPanel Newsroom

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores ranging from 3.3 Continue Reading

TSR-2019-0002 Announcement | cPanel Newsroom

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores ranging from 2.5 Continue Reading

Breakdown of a Targeted DanaBot Attack

A FortiGuard SE Team Threat Analysis Report On Feb 5th, 2019, the FortiGuard SE team discovered a targeted attack aimed at an unknown individual working for a governmental organization located in the city of Gold Coast, Australia. Within a span of a few days, we had observed additional activity targeting Continue Reading

cPanel TSR-2019-0001 Full Disclosure | cPanel Newsroom

Yesterday we released new builds for versions 70, 76, and 78. These updates provided targeted changes to address security concerns with the cPanel & WHM product. Below is the full disclosure of the updates that were included in these builds. SEC-415 Summary Internal data disclosed to OpenID providers. Security Rating Continue Reading

>