Redhat advisory on handling memcached vulnerability

Red Hat has released security advisory to address memcached based  DDoS attacks. If left misconfigured, attackers could use it to cause Denial of Service situation. Therefore, BtCIRT recommends  users and administrators to review Redhat Advisory for more details and make the necessary configuration changes. Patch and be Protected.  ...

Security Updates for ISC DHCP and BIND

ISC has released security updates to address vulnerabilities in earlier version of ISC Dynamic Host Configuration Protocol (DHCP) and Berkeley Internet Name Domain (BIND). If left unpatched, attackers could exploit them and cause DoS. Therefore, BtCIRT recommends  users and administrators to review BIND advisory and DHCP advisory for more details on affected products and apply the necessary updates. Patch and be Protected.  ...

Security Updates from Microsoft

Microsoft has released security updates to address vulnerabilities affecting earlier version of multiple products . If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends  users and administrators to review Microsoft Updates for more details on affected products and apply the necessary updates. Patch and be Protected....

 The  memcached Reflection/Amplification DDoS Attack

Description Memcache is temporary data storage service used to  improve the overall performance of the website by storing chunks of data in a cache. If misconfigured memcached on port 11211 UDP & TCP is used to cause reflection DOS attack (send a spoofed packet to a device and have it reflected back). Memcached allows access to the data stored in the cache without any form of authentication and the attacker can easily access data in the corresponding caches and even modify them. How to Fix: Bind the Memcache server to a particular Source IP Only. Don’t expose this service in...

Security Updates from Cisco

Cisco has released security updates to address  vulnerabilities affecting earlier version of multiple products.  If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends  users and administrators to review Cisco Security Advisories for more details on affected products and apply the necessary updates. Patch and be Protected.  ...