ACSC Archives - Securezoo

Critical ForgeRock Access Management vulnerability (CVE-2021-35464) exploited

Identity & Access Management, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / July 12, 2021 / Access Management, ACSC, CVE-2021-35464, ForgeRock, Identity

A Critical ForgeRock Access Management (AM) vulnerability (CVE-2021-35464) has been exploited in the wild. The issue affects ForgeRock’s OpenAM, open-source AM solution.

Guidelines for securing Content Management Systems

Application Security, Configuration Management, Cybersecurity Articles, Identity & Access Management, Vulnerabilities & Exploits / By Frank Crast / March 5, 2020 / ACSC, AWS, CMS, Drupal, Joomla, Web application, WooCommerce, WordPress

The Australian Cyber Security Centre (ACSC) has released new guidelines to assist organizations in securing Content Management Systems (CMS). The guidelines include good mitigation advice in areas of patching, account management, hardening and monitoring to name a few.

Mailto ransomware threat and mitigation guidance

Cybersecurity Attacks, Malware / By Frank Crast / February 8, 2020 / ACSC, Kazakavkovkiz, KoKo, Mailto, malware, Ransomware

The Australian Cyber Security Centre (ACSC) has released a security advisory and guidance on Mailto ransomware incidents. Mailto, also known as Kazakavkovkiz, belongs to the KoKo ransomware family.

Emotet malware campaign warning

Cybersecurity Attacks, Malware, Phishing / By Frank Crast / October 28, 2019 / ACSC, Emotet, malware, Ransomware, Ryuk, Trickbot

The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has warned of an ongoing and widespread phishing campaign designed to spread Emotet malware throughout Australia.