A repository for tracking all cybersecurity-related advisory from the operational and technical point, threat intelligence, and updates from CSEAN.
| Publish Date | Issues | Sources | Advisory |
|---|---|---|---|
| July 2023 | CSEAN Advisory: Anonymous Sudan attack on Kenya | CSEAN Leadership | We are writing to you today to bring your attention to a recent cyber attack that occurred in Kenya, which we believe could have implications for organizations here in Nigeria. The attack was carried out by the hacking group Anonymous Sudan, which targeted a number of government websites in Kenya. We urge all organizations in Nigeria to take this warning seriously and review their cybersecurity measures to ensure they are adequately protected against potential cyber-attacks. In particular, we recommend the following steps: 1. Conduct a thorough review of your current cybersecurity measures, including firewalls, antivirus software, and intrusion detection systems. 2. Ensure that all software and operating systems are up-to-date with the latest security patches. 3. Educate your employees on cybersecurity best practices, such as strong password management and identifying phishing attempts. 4. Consider implementing a cybersecurity incident response plan, which outlines the steps to take in the event of a cyber attack. 5. In addition to the above, we strongly recommend that organizations have a Business Continuity Plan (BCP) and Disaster Recovery (DR) plan in place. These plans will help ensure that your organization can continue to operate in the event of a cyber-attack or other disaster. By taking these steps, you can help protect your organization from potential cyber threats and reduce the risk of a successful attack. If you have any questions or concerns regarding this advisory, please do not hesitate to contact us. |
| July 2023 | Advisory: Privilege Elevation Flaws Discovered in Ubuntu Kernel | Ubuntu | Two privilege elevation flaws discovered in the Ubuntu kernel, which could put almost 40% of Ubuntu users at risk. CVE-2023-32629 and CVE-2023-2640 allow unprivileged local users to gain elevated privileges on a massive number of devices. CSEAN advises Ubuntu users to take immediate action! Ubuntu has released a security bulletin and updates to address these flaws. Reinstall and activate third-party kernel modules or use your package manager for the update. A reboot is required for the changes to take effect. |
| July 2023 | CSEAN Advisory: ALPHV Ransomware Group Rampage in Nigeria | CSEAN Tech Team & Community | CSEAN has received reports of the ALPHV ransomware group's recent rampage in Nigeria. This group has been actively targeting organizations in Nigeria and demanding ransom payments in exchange for the decryption of their files. The ALPHV ransomware group is known for using sophisticated techniques to infiltrate systems and encrypt files, making it difficult for victims to recover their data. They often demand large sums of money in exchange for the decryption key, and failure to pay can result in permanent loss of data. To protect yourself and your organization from the ALPHV ransomware group, it is important to take proactive measures such as: 1. Keeping your systems and software up-to-date with the latest security patches, 2. Implementing strong password policies and multi-factor authentication, 3. Educating your employees on how to identify and avoid phishing emails and suspicious links, 4. Backing up your important files regularly and storing them securely, If you suspect that your organization has been targeted by the ALPHV ransomware group and others, please contact a good hand for Incident Response (ngCERT, CSEAN-CSIRT) and do well to make a report and documentations to keep other safe. Stay vigilant and stay safe! |
| April 2023 | Advisory from CSEAN on the Usage of Vulnerable and Old Services, Servers by Organizations in Nigeria | CSEAN Leadership | As an organization, it is important to prioritize the security of your systems and data. In light of recent cyber-attacks and data breaches, you must take proactive measures to protect your organization from such incidents. CSEAN advises against the usage of vulnerable and old services and servers by organizations in Nigeria. These services and servers are more susceptible to cyber-attacks and can be exploited by cybercriminals to gain unauthorized access to your systems and data. It is recommended that you upgrade to the latest versions of services and servers and ensure that all security patches are applied promptly. Regular vulnerability assessments and penetration testing should also be conducted to identify and address any potential security weaknesses. By taking these proactive measures, you can protect your organization from cyber threats and ensure the safety and security of your systems and data. CSEAN is committed to supporting organizations in Nigeria in their efforts to enhance their cybersecurity posture. |