FTC Scam Alert, multiple vulnerabilities in the Network Time Protocol daemon and vulnerability in HTTP cookie processing code.

As part of our Global Cyber Awareness System, Connectikpeople.co reminds that, the Federal Trade Commission (FTC) has released a Scam Alert addressing a "Package Delivery" themed phishing campaign regarding package delivery notifications from the U.S. Postal Service.  Scam operators often use false information linked to reputable organizations to imply the email is legitimate.
Users are encouraged to review the FTC Scam Alert for details, and refer to the Recognizing and Avoiding Email Scams Publication for information on email scams.

When it comes to Network Time Protocol daemon, they have released an update that addresses multiple vulnerabilities in the Network Time Protocol daemon. Exploitation of these vulnerabilities may allow a remote attacker to execute malicious code.
We encourage users and administrators to review Vulnerability Note VU#852879 and update to NTP 4.2.8 if necessary.

And Broadband routers employing the Allegro RomPager firmware prior to versions 4.34 contain a vulnerability in HTTP cookie processing code. Exploitation of this vulnerability could allow a remote attacker to take control of an affected device.
Users and administrators are encouraged to review Vulnerability Note VU#561444, the Allegro Press Release, and Check Point's Security Advisory for additional information and apply the necessary updates.

Popular Posts