Skip to main content

Home

Helping you have
a safer online
experience

We aim to promote cybersecurity awareness to the people of Negara Brunei Darussalam

Learn more »

Tune Into Our Radio Show!

 

Pilihan 95.9FM & 96.9FM

Catch up with the latest online threats and cyber advice on our radio segment Cyber Safe while you're on the go.

 

 

Monday & Wednesday at 7.15am

Tuesday & Thursday at 12.45pm

Are you experiencing an online threat?

Contact BruCERT for advise if you need help in dealing with a cyber security incident such as identity theft, cyberbullying, phishing, stalking, hacked email account, ransomware or malware.

I am interested in information for

Request an awareness talk

BruCERT offers cyber security awareness talks for schools and organizations throughout Brunei Darussalam. Our talks provide valuable information about online threats, cyber safety and include tips to keep private information secure.

Alerts & Advisories

Cisco ASA Devices Backdoored Via Two Zero-Days (CVE-2024-20353 and CVE-2024-20359)

1 May 2024

Cisco has warned that two zero-day vulnerabilities in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) firewalls are now actively exploited since November 2023 to breach government networks worldwide. The two vulnerabilities, namely CVE-2024-20353 and CVE-2024-20359, allow threat actors to deploy previously unknown malware and maintain persistence on compromised ASA and FTD devices.

See more

Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability (CVE-2023-32046)

29 Apr 2024

CVE-2023-32046 is a vulnerability in the Windows MSHTML platform that could lead to an Elevation of Privilege (EoP) – essentially allowing a low privilege attacker to execute code in the context of the user or gain high-level access to a system they ordinarily would not have. Exploitation of the vulnerability requires that a user open a specially crafted file.

See more

Microsoft Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)

29 Apr 2024

CVE-2024-21410 is a critical vulnerability affecting Microsoft Exchange Server, with a severity score of 9.8. Successful exploitation of the flaw could permit an attacker to relay a user's leaked Net-NTLMv2 hash against a susceptible Exchange Server and authenticate as the user. This elevation of privilege vulnerability can be exploited by attackers to gain unauthorized access to affected systems. It is essential for organizations to apply appropriate mitigations to protect their systems from potential exploitation.

See more

News