Advisories & Alerts

  • [SingCERT] Alert on Cisco Adaptive Security Appliance (ASA) Critical Vulnerability (CVE-2018-0101) 01 February 2018

    On 29 January 2018, Cisco announced a critical vulnerability (CVE-2018-0101) found on its Adaptive Security Appliance (ASA) software with a maximum Common Vulnerability Score System (CVSS) severity base score of 10 out of 10. The vulnerability is found in the Secure Sockets Layer (SSL) VPN functionality of the ASA and is due to an attempt to double free a region of memory when the webvpn feature is enabled on the Cisco ASA device. An attacker could exploit this vulnerability by sending multiple, crafted XML packets to a webvpn-configured interface on the affected system, resulting in unauthenticated remote access.

  • [SingCERT] Alert on WordPress Websites Infected with Browser-based Digital Currency Mining and Keylogger Malware 31 January 2018

    On 29 January 2018, security researchers from Sucuri discovered a malicious campaign that targets WordPress websites by infecting them with a browser-based digital currency mining tool and keylogger malware. A digital currency mining tool runs on the computer system on the internet, utilising computational power of the hardware Central Processing Unit (CPU) and Graphics Processing Unit (GPU) while keylogger, a type of surveillance technology used to monitor and record each keystroke typed on a specific computer’s keyboard, is commonly used by cyber criminals to capture users’ information such as login passwords or banking credentials.

  • [SingCERT] Technical Advisory on Electron Framework Critical Protocol Handler Vulnerability 26 January 2018

    The Electron framework is a popular and widely used development cross-platform for creating desktop applications such as Skype, Slack, Signal, Shopify, Discord, Github, WordPress and Twitch.

    On 22nd January 2018, Electron disclosed the critical vulnerability CVE-2018-1000006 present in the Electron framework which could possibly cause all Windows applications developed using that platform to be vulnerable to Remote Code Execution (RCE).

  • [SingCERT] Alert on Intel Active Management Technology (AMT) Issue 13 January 2018

    On 12 January 2018, security firm F-Secure reported an insecure default behaviour within Intel Active Management Technology (AMT) that could allow an attacker to bypass login processes and take control of a user's computer.

  • [SingCERT] Advisory on Important Microsoft vulnerabilities affecting Office, .NET Framework and ASP.NET Core 12 January 2018

    On 9 January 2018, Microsoft announced the release of several security patches to fix vulnerabilities affecting Microsoft Office, the .NET Framework, and ASP.NET Core, amongst others.

  • [SingCERT] Alert on Western Digital NAS Drive Vulnerabilities 09 January 2018

    Western Digital's My Cloud (WDMyCloud) is a popular Network-Attached Storage (NAS) drive used by individuals and businesses to host files, automatically backup and sync with various cloud and web-based services. The drive lets users not only share files in a home network, but the private cloud feature also allows them to access their data from anywhere at any time.

  • [SingCERT] Advisory On Critical Zero-day Vulnerabilities Within Dell EMC Data Protection Suite 09 January 2018

    On 5 January 2018, a group of security researchers published the discovery of a set of critical zero-day vulnerabilities within the Dell EMC Data Protection Suite Family products, which authorises attackers to fully compromise systems. The Dell EMC Data Protection Suite is a product set for enterprises to protect data and critical applications.

  • [SingCERT] Alert on Digital Currency Mining Malware 08 January 2018

    SingCERT has observed an increase in cases where attackers used malicious malware to remotely harness computing power to mine for digital currency, which may cause damage to users’ hardware or slow down their computing performance. The attackers exploit vulnerable systems to hijack personal computers, Android devices, servers, and Content Management Systems (CMS) with weak passwords, and use them for digital currency mining.

  • [SingCERT] Alert on Security Flaws Found in Central Processing Units (CPUs) 04 January 2018

    On 3 January 2018, a group of security researchers published the discovery of two vulnerabilities dubbed “Meltdown” and “Spectre” affecting desktop computers, smartphones, tablets and cloud services. The vulnerabilities enable attackers to steal any data processed by the computer.

  • [SingCERT] Tips to Stay Safe Online in 2018 29 December 2017

    In 2017, major cyber incidents such as the WannaCry ransomware attack, Equifax hack, Uber data breach and multiple phishing scams were found to have affected millions of people worldwide. Singapore has also experienced its fair share of cyber incidents such as local data breaches and various phishing scams involving fake Government websites which have resulted in victims incurring monetary losses and their personal data compromised. To avoid falling prey to cyber criminals, practising good cyber hygiene will help safeguard our devices and information.