Oracle, Citrix and Adobe have all release cyber security updates across a range of products.
These are listed on the US government Cybersecurity and Infrastructure Security Agency (CISA) – this is a site to keep an eye for security updates – or we can do it for you.
Oracle Releases Security Updates | CISA
Citrix Releases Security Updates for NetScaler ADC and Gateway | CISA
Adobe Releases Security Updates for ColdFusion | CISA
The Citrix vulnerability is being exploited in the wild:
CISA Adds One Known Exploited Vulnerability to Catalog | CISA
CISA also releases industrial control system advisories – if you are responsible for these types of systems you should monitor their news page:
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.
Clive Catton MSc (Cyber Security) – by-line and other articles
