Mozilla Releases Security Updates

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. TTherefore, Bhutan Computer Incident Response Team recommends  users and administrators to review  the Mozilla Security Advisories for Firefox 78 and Firefox ESR 68.10 and apply the necessary updates.

Microsoft Releases Security Updates for Window 10

Microsoft has released security updates to address vulnerabilities in Windows 10 and Windows Server. These vulnerabilities could allow a remote attacker to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends  users and administrators to review  the Microsoft security advisories for CVE-2020-1425 and CVE-2020-1457 and apply the necessary updates.

Courier/Parcel Scam

BtCIRT has come to notice of Courier/Parcel Scam where the scammer calls you to inform, about your pending parcel that needs to be cleared with some charges. The tracking number and the website provided by the scammer appears almost genuine. The scammer tries to lure you saying the packet contains money or other valuable items. Please be aware of such scams and do not fall into this scammer’s trap.  Here’s some screenshots: The website used in this scam is  https://royalexpresscr.com/ 

VMware Releases Security Updates for Multiple Products

VMware has released security updates to address multiple vulnerabilities in VMware ESXi, Workstation, Fusion, and Cloud Foundation. An attacker could exploit some of these vulnerabilities to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends  users and administrators to review the  VMware Security Advisory VMSA-2020-0015 and apply the necessary updates or workarounds.

Adobe Releases Security Updates for Magento

Adobe has released security updates to address vulnerabilities in Magento Commerce 1 and Magento Open Source 1. An attacker could exploit one of these vulnerabilities to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends  users and administrators to review the  Adobe Security Bulletin APSB20-41 and apply the necessary updates.