Beranda blog

Alert (AA21-356A)

0

Summary

The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), National Security Agency (NSA), Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), the Computer Emergency Response Team New Zealand (CERT NZ), the New Zealand National Cyber Security Centre (NZ NCSC), and the United Kingdom’s National Cyber Security Centre (NCSC-UK) are releasing this joint Cybersecurity Advisory (CSA) to provide mitigation guidance on addressing vulnerabilities in  Apache’s Log4j software library: CVE-2021-44228 (known as “Log4Shell”), CVE-2021-45046, and CVE-2021-45105. Sophisticated cyber threat actors are actively scanning networks to potentially exploit Log4Shell, CVE-2021-45046, and CVE-2021-45105 in vulnerable systems. According to public reporting, Log4Shell and CVE-2021-45046 are being actively exploited.

CISA, in collaboration with industry members of CISA’s Joint Cyber Defense Collaborative (JCDC), previously published guidance on Log4Shell for vendors and affected organizations in which CISA recommended that affected organizations immediately apply appropriate patches (or apply workarounds if unable to upgrade), conduct a security review, and report compromises to CISA or the FBI. CISA also issued an Emergency Directive directing U.S. federal civilian executive branch (FCEB) agencies to immediately mitigate Log4j vulnerabilities in solution stacks that accept data from the internet. This joint CSA expands on the previously published guidance by detailing steps that vendors and organizations with IT and/or cloud assets should take to reduce the risk posed by these vulnerabilities.

SOURCE

Swedish spy agency investigating drone sightings……

0

SWEDEN’S DOMESTIC SECURITY AGENCY said it had taken over from the police an investigation into sightings of unmanned aerial vehicles, commonly known as drones, at three nuclear power plants. On Monday, the Swedish Security Service, known by its Swedish acronym, SAPO, confirmed earlier reports that a large-size drone had been spotted on Friday by security guards over the Forsmark Nuclear Power Plant. The facility is located just short of 95 miles north of Sweden’s capital, Stockholm. It is known as the country’s largest producer of electricity, generating one sixth of its electricity supply.

Later, however, reports emerged about sightings of what appeared to be surveillance drones over Sweden’s two other nuclear power plants—namely the Oskarshamn Nuclear Power Plant, located on Sweden’s southeastern Baltic Sea coast, and the Ringhals Nuclear Power Plant, which is situated on the Värö Peninsula, on Sweden’s western coast. According to reports, the drones appeared to be large enough to withstand the gale force winds that were blowing over much of Sweden at the time. The drones disappeared without trace, and Swedish authorities say they have no suspects so far.

On Monday, SAPO said that it had assumed control of the probe into the drone sightings, “in order to be able to investigate the incidents in more detail”. In a report last weekend, the Reuters news agency pointed out that the drone sightings occurred a day after the Swedish military began patrolling the city of Visby, on the island of Gotland. According to Reuters, the patrols were sparked by “increased tensions” between Russia and the North Atlantic Treaty Organization (NATO). Like its neighboring Finland, Sweden is not a member of NATO, but there have been frequent calls in recent months for it go join, in light of renewed tensions between Russia and Ukraine.

SOURCE

NIA Anti-Terror Investigations

0

Classified – The National Investigation Agency or NIA has filed a supplementary chargesheet against an Indian agent of Pakistan’s spy agency ISI (Inter-Services Intelligence) for his alleged involvement in espionage, an official said today.

The supplementary chargesheet against Rajakbhai Kumbhar of Gujarat’s West Kachchh district was filed on Thursday under sections of the Indian Penal Code and the stringent Unlawful Activities (Prevention) Act or UAPA.

The case was initially registered in January last year in Lucknow after the arrest of Md. Rashid of Uttar Pradesh’s Chandoli district for supplying sensitive information, photos and videos of vital installations of strategic importance to ISI operatives based in Pakistan.

The NIA re-registered the case in April last year and took over the investigation.

Earlier, a charge sheet was filed against Rashid in July last year under sections of the IPC and the UAPA for his role in supplying sensitive, tactical and strategically important information about vital installations and movement of Indian security forces to his ISI handlers in Pakistan.

Kumbhar, who was arrested on September 30 last year, had visited Pakistan twice on legal documents and during his return in the course of second visit, he had come in contact with Pakistani ISI operatives Hamid and joined the conspiracy with the co-accused, the NIA official said.

SOURCE