Critical vulnerability RCE is found in more than a million GPON Home routers


More than a million fiber-optic GPON routers can be remotely accessible, thanks to an authentication traversal error that is easily usedA method was discovered to bypass authentication on GPON devices by changing the URL in the address bar of the browser when accessing the device (CVE-2018-10561) More..

Why not install some applications?


The Computer Emergency Response Team KZ-CERT reports an increase in the number of mobile applications in order to obtain personal information of its usersThe user using the application agrees to grant access to their personal data to the company that manages this application More..

SOC-Forum 2018



Attention! Phishing email!


Сomputer Emergency Response Team KZ-CERT RSE "State Technical Service" of the Committee of National Security of the Republic of Kazakhstan warns about another mass mailing of cybercriminals from fake pages in the social network InstagtamThe dispatch is carried out from @qazkom_offical and @qazkom_promo logins, as well as sending messages to Facebook messenger, in which the attackers on behalf of the bank reported the launch of a new version of Homebank More..

Recommendations for resolving vulnerabilities in Drupal 6.x, 7.x and 8.x CVE-2018-7600


The Computer Emergency Response Team KZ-CERT reports that a critical vulnerability (CVE-2018-7600) has been identified in the Drupal content management system, which can be used to remotely execute code on the server by sending a specially crafted request without authentication The problem is quite simple in operation and affects the branches Drupal 8, 7 and 6 More..