A new type of attack known as KRACK(Key Reinstallation AttaCKs) was discovered by Mathy Vanhoef of imec-DistriNet which, essentially is a vulnerability in the WPA2 protocol, which till date was considered as a secure protocol for Wi-Fi connection. Thus, it affects all products that support WiFi. BtCIRT recommends users and administrators to keep your devices updated with the patch the vendors provide as soon as they are released and make sure to use HTTPS while transmitting sensitive information. More details about the attack are available at: ABC News on KRACK and WiFi KRACK – Key Reinstallation AttaCKs. More Technical...
Microsoft Security updates
Microsoft has released security updates dated 16/10/17. If left unpatched, attackers could exploit them and gain complete control of the website. Therefore, BtCIRT recommends users and administrators to review Security updates summary for more details and apply necessary updates immediately. Patch and be Protected. ...
Updates for Adobe Flash Player
Adobe has released security updates to address a vulnerability in Adobe Flash Player. If left unpatched, attackers could exploit them and gain complete control of the website. Therefore, BtCIRT recommends users and administrators to review Adobe Security Update for more details and apply necessary updates immediately. Patch and be Protected....
Security on Social Media
The most popular social media platforms have billions of users, and the number keeps getting bigger every year. Facebook, Twitter, YouTube and Instagram to name a few—have gone beyond their initial purpose of sharing, entertainment, and communication. Now, enterprises see them as valid advertising tools and users have built careers out of sharing content. Information Sharing risks: Attackers may use social networking services to spread malicious code, compromise users’ computers, or access personal information about a user’s identity, location, contact information, and personal or professional relationships. You may also unintentionally reveal information to unauthorized individuals by performing certain actions....
Information and Network Security Workshop
Mr. Jamie Gillespie and Mr. Tashi Phuntsho from APNIC(Asia Pacific Network Information Center) are currently conducting a week long workshop on Information and Network Security Workshop from 9th- 13th October, 2017. The workshop will be covering topics on Network and Security threats and breaches, Policies and Counter measures. It is a platform to bring together important stakeholders from critical sectors and foster information sharing among them. Participants include ICT personnel from Banks, Power Corporation, Royal Bhutan Police,RUB Colleges, Dzongkhags and Ministries. The workshop is funded by EU(European Union) and TEIN*CC @TEIN (Trans-Eurasia Information Network* Corporation Center) through the Asi@Connect Project...