The  memcached Reflection/Amplification DDoS Attack

Description Memcache is temporary data storage service used to  improve the overall performance of the website by storing chunks of data in a cache. If misconfigured memcached on port 11211 UDP & TCP is used to cause reflection DOS attack (send a spoofed packet to a device and have it reflected back). Memcached allows access to the data stored in the cache without any form of authentication and the attacker can easily access data in the corresponding caches and even modify them. How to Fix: Bind the Memcache server to a particular Source IP Only. Don’t expose this service in the […]

Security Updates from Cisco

Cisco has released security updates to address  vulnerabilities affecting earlier version of multiple products.  If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends  users and administrators to review Cisco Security Advisories for more details on affected products and apply the necessary updates. Patch and be Protected.  

Security Updates from Adobe

Adobe has released security updates to address vulnerabilities in earlier version of  Flash Player. If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends  users and administrators to review Adobe Security Bulletin for more details on affected products and apply the necessary updates. Patch and be Protected.  

Safer Internet Day 2018

Tuesday 6th of February 2018 is globally marked as Safer Internet Day 2018 with the theme: ” Create, Connect and Share Respect: A better Internet starts with you“ . Every individual internet user has a role to play in making the internet a safer space. BtCIRT encourages  everyone to review following advisories at BtCIRT website and remember simple steps you as an individual cyber citizen can take to secure internet world. Protecting-Privacy-on-the-internet Browser Security Protection from Phishing Mobile Security We also recommend you to visit  childnet-safer-internet-day and https://www.saferinternet.org.uk/safer-internet-day/2018 to gain insight on how to be safer online.

Security Updates from Cisco

Cisco has released security updates to address a vulnerability affecting earlier version of Adaptive Security Appliance(ASA) software . If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends  users and administrators to review Cisco Security Advisory for more details on affected products and apply the necessary updates. Patch and be Protected.