Security News > 2020 > October

Virtru announced the addition of two executives charged with advancing the open Trusted Data Platform and further accelerating the adoption of data encryption solutions for secure collaboration - which has more than doubled since March. Dana Morris, Virtru's Senior Vice President of Product, will lead the company's product and platform strategy, focused on accelerating Virtru's open source roadmap, increasing developer adoption and driving frictionless user experience for key products such as Virtru for Email.

Adlumin announced the appointment of Jim Adams as Vice President, Worldwide Channels. Adams is based out of the Boston area and will be responsible for building and executing partner strategies across all partner types including global system integrators, MSSPs, value-added resellers, distributors and services partners.

Wickr announced the launch of its Federal Advisory Board to provide strategic guidance on the company's federal strategy to connect end users with secure collaboration for mission-critical needs. The Federal Advisory Board will be vital in supporting Wickr's federal strategy, capitalizing on its recent growth - including a multi-million-dollar contract award with the Air Force special operations community - by providing external guidance, expertise and strategy on how to bring the world's most secure collaboration tool to federal departments.

The Darkside ransomware group has distinguished itself from its cybercriminal counterparts not by technical innovation, but by slapping a shiny corporate veneer on its attacks. The latest evolution in Darkside's ransomware-as-a-corporation gimmick is a hefty $20,000 donation that the group made with stolen Bitcoin to two international charitable organizations, The Water Project and Children International, which they then mysteriously announced by a press release.

Sysadmins responsible for VMware deployments should test and apply the latest security updates for the software. In an advisory published this morning, VMware revealed six vulnerabilities affecting its ESXi, Workstation, Fusion, Cloud Foundation, and NSX-T products.

On October 12, Microsoft and its partners announced that they had taken down some Trickbot C2s. This was possible after the U.S. District Court for the Eastern District of Virginia granted a request to take down 19 IP addresses in the U.S. that Trickbot used to control infected computers. "The Emotet bots reached out to their controllers and received commands to download and execute Trickbot on victim machines. The Trickbot group tag that Intel 471 identified is tied to a typical infection campaign that information security researchers have been observing for the past 6 months or more" - Intel 471.

Adobe has released 18 out-of-band security patches in 10 different software packages, including fixes for critical vulnerabilities that stretch across its product suite. There are 16 critical bugs, all of which allow arbitrary code execution in the context of the current user.

Adobe on Tuesday announced that it has released security updates for 10 of its products, patching a total of 20 vulnerabilities. In the Windows and macOS versions of Illustrator, Adobe fixed 7 critical vulnerabilities that can lead to arbitrary code execution in the context of the current user.

Cisco today warned of attacks actively targeting the CVE-2020-3118 high severity vulnerability found to affect multiple carrier-grade routers that run the company's Cisco IOS XR Software. The IOS XR Network OS is deployed on several Cisco router platforms including NCS 540 & 560, NCS 5500, 8000, and ASR 9000 series routers.

You've probably seen the news that six Russians, allegedly employed by the Russian Main Intelligence Directorate, better known as the GRU, have been charged with cybercrimes by the US Department of Justice. The indictment of the Russian GRU hackers related to the attacks referred to collectively as "Sandworm" is an interesting development in attempts by Western governments to rein in foreign adversary attacks.