WannaCry: Safety and Security under attack from all fronts NSA, North Korea, Cyber Criminals and the CIA

Posted by John Marrett on May 19, 2017 1:34:29 PM

With all of the concern this week regarding "WannaCry" ransomware, we decided to deviate from our standard Tips and Insights to explain what is happening and our view on the situation and it's root causes.

“WannaCry” is the security story of the moment, and, hopefully, the year. There's a lot of the year left, but this worm has already caused an impressive amount of damage. Thankfully, due to the quick actions of a malware researcher in the UK registering a kill switch domain, the worm was shut down just as it was getting started. Were it not for those quick actions combined with limited exposure of SMB shares directly to the Internet this attack could have taken off like “code red” or “slammer.”

Read More

Topics: wannacry, ransomware, Security, Network

CVE-2017-3881 How to Mitigate CIA Vault 7 Exploits on Your Cisco Switches

Posted by John Marrett on Mar 22, 2017 11:04:46 AM

The threat
Two weeks ago WikiLeaks released Vault 7, a large collection of documents that they claim were taken from the CIA. While the CIA has not confirmed this release, there's little question that the leaked information comes from a nation state level intelligence service and contains extensive details regarding exploits and tradecraft targeting a wide variety of service providers, vendors, and equipment. Wikileaks has thus far attempted to redact detailed exploit information and has announced their intention to work with the impacted parties to address these vulnerabilities.

Read More

Topics: CVE-2017-3881, vault 7, cisco switches, IOS Telnet, Security

Use of Scripting to Identify Devices Affected by the Clock Signaling Field Notice

Posted by John Marrett on Mar 13, 2017 2:03:43 PM

By now you have likely heard about the "Clock Signaling Component" issue affecting a broad range of Cisco products. If you haven't a number of Cisco products are affected by an issue that will cause them to fail during normal operation, once they fail they will stop functioning completely and can not be powered back on. You can learn more about the affected devices on the notice page

Read More

Topics: Cisco Clock Issue, UC managed Services, Security, Network

Cisco WebEx Plugin Vulnerabilities Affecting Chrome, Firefox and Internet Explorer (CVE-2017-3823)

Posted by John Marrett on Jan 24, 2017 4:26:52 PM

Do not miss out receive expert tips and insights straight to your inbox!

Subscribe to our blog today!

There is a severe bug in the WebEx extensions for Chrome, Firefox and Internet Explorer (CVE-2017-3823) that enables an attacker to execute arbitrary code on a machine if a user with the plugin installed visits a hostile website. A trusted website may also contain a hostile ad or XSS vulnerability that can be leveraged in this attack. This plugin is installed on approximately 10 - 20 million user machines.

Read More

Topics: webex, chrome, firefox, CVE-2017-3823, Security

Diagnosing Firewall "Misbehaviour" with Packet Captures

Posted by John Marrett on Jun 22, 2016 8:30:00 AM

Our support team received a call from a customer complaining that their next generation firewall (NGFW) was intermittently blocking access to their new voting website. As we were in the process of making firewall changes inside their environment and are responsible for the management of their network they turned to us for help.

The website was a vanity domain hosted at GoDaddy that redirected users to a deep link within another website. We accessed the site and confirmed that it was working properly and sending a 301 redirect as expected, it worked properly both inside their and our environment. We reviewed the firewall logs and found no indications that traffic was blocked by any firewall or IPS. The customer insisted that there was an intermittent problem accessing the website that seemed to affect some users at random.

Read More

Topics: Network, Security

Don’t miss out. Expert advice straight to your inbox!

Insightful tips, troubleshooting and solutions for your everyday Unified Communications challenges from our team of experts. You can look forward to:

  • Weekly UC tips;
  • Cisco Unified Communications insights;
  • UCCX - Contact Center insights;
  • Network and Security insights;
  • Cisco Release notes and Product reviews.

Posts by Topic

see all
Join us for free live demo

Recent Posts