Red Hat has released security advisory to address memcached based DDoS attacks. If left misconfigured, attackers could use it to cause Denial of Service situation. Therefore, BtCIRT recommends users and administrators to review Redhat Advisory for more details and make the necessary configuration changes. Patch and be Protected. ...
Security Updates for ISC DHCP and BIND
ISC has released security updates to address vulnerabilities in earlier version of ISC Dynamic Host Configuration Protocol (DHCP) and Berkeley Internet Name Domain (BIND). If left unpatched, attackers could exploit them and cause DoS. Therefore, BtCIRT recommends users and administrators to review BIND advisory and DHCP advisory for more details on affected products and apply the necessary updates. Patch and be Protected. ...
Security Updates from Microsoft
Microsoft has released security updates to address vulnerabilities affecting earlier version of multiple products . If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends users and administrators to review Microsoft Updates for more details on affected products and apply the necessary updates. Patch and be Protected....
The memcached Reflection/Amplification DDoS Attack
Description Memcache is temporary data storage service used to improve the overall performance of the website by storing chunks of data in a cache. If misconfigured memcached on port 11211 UDP & TCP is used to cause reflection DOS attack (send a spoofed packet to a device and have it reflected back). Memcached allows access to the data stored in the cache without any form of authentication and the attacker can easily access data in the corresponding caches and even modify them. How to Fix: Bind the Memcache server to a particular Source IP Only. Don’t expose this service in...
Security Updates from Cisco
Cisco has released security updates to address vulnerabilities affecting earlier version of multiple products. If left unpatched, attackers could exploit them and gain complete control of the system. Therefore, BtCIRT recommends users and administrators to review Cisco Security Advisories for more details on affected products and apply the necessary updates. Patch and be Protected. ...