UCSF IT Technology

Threat Alert: What to Watch For Following the collapse of Silicon Valley Bank (SVB), cybercriminals have launched phishing attacks to take advantage of the high-profile event.  One widespread lure impersonates Circle, the peer-to-peer payments company that manages the cryptocurrency USDC. The lure encourages recipients to click an offer link to redeem a one-to-one exchange between the cryptocurrency USDC and the U.S.

Drupal has released security updates to address Moderately Critical vulnerabilities in Drupal core. A remote attacker could exploit these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Drupal core - Moderately critical - Access bypass - SA-CORE-2023-004. IT Security

Mandiant reported a vulnerability in SAP BusinessObjects Business Intelligence Platform 4.30. An attacker who successfully exploited the vulnerability could run arbitrary code on the affected system. For a complete description of the vulnerabilities and affected systems go to CVE-2023-25616 Detail. IT Security

Mandiant reported a Critical vulnerability in Microsoft Outlook.  This vulnerability requires no user interaction and for which proof of concept exploits are now widely available. There is a possibility of privilege escalation with no user interaction or privileges required for exploitation. Following exploitation an attacker could authenticate to multiple services and move laterally. Exploitation of the zero-day is trivial, and it will likely be leveraged imminently by actors for espionage purposes or financial gain.

Mandiant reported a  vulnerability in Microsoft Windows Server 2022 Internet Control Message Protocol (ICMP).  An attacker who successfully exploited the vulnerability could run arbitrary code on the affected system. For a complete description of the vulnerabilities and affected systems go to CVE-2023-23415 Detail. IT Security

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Adobe Security Bulletins. IT Security

Mozilla has released security updates to address High vulnerabilities in multiple Mozilla products. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Mozilla Foundation Security Advisories. IT Security

Microsoft released their March Security Update to address vulnerabilities in multiple products. An attacker can exploit some of these vulnerabilities to take control of an affected system.

Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using malicious invoice-themed attachments to spread malicious software (malware).  The phishing attacks hijack legitimate email threads to deliver the phishing lures to further increase the believability of the attacks.

Google released Chrome 111.0.5563.64 (Linux and Mac) and 111.0.5563.64/.65( Windows) to address vulnerabilities in Chrome.  For a complete description of the vulnerabilities and affected systems go to Chrome Stable Channel Update IT Security