There is an academic paper from Tel Aviv University examining Samsung smartphones and how they implement the cryptographic security. They found that some models had a design flaw that allowed for the extraction of the secret keys. Trust Dies in Darkness: Shedding Light on Samsung’s TrustZone Keymaster Design (iacr.org) Here …
Have you got a Cisco firewall – if so it may need a critical patch
You may only get a four day window – it may be less when you read this – to patch Cisco’s Firepower firewall products both physical and virtual. So check it now or get whoever manages your IT or security to check if this impacts you. Field Notice: FN – …
Continue reading “Have you got a Cisco firewall – if so it may need a critical patch”
An oldie but still out in the wild
The Equation Editor vulnerability in Microsoft Office was fixed back in 2017 but SANS recently found a new phishing email using it in the wild. It really highlights why updates and patches are so important – especially when you are using older software. Have a look at the ingenuity used …
WordPress UpdraftPlus needs patching urgently – check it!
Backups are your best friend in a cybersecurity incident UpdraftPlus the popular back-up plug-in for WordPress needs an upgrade to plug a security vulnerability. This upgrade was pushed out last Thursday to millions of users, who have automatic updates enabled. UpdraftPlus security release – 1.22.3 / 2.22.3 – please upgrade …
Continue reading “WordPress UpdraftPlus needs patching urgently – check it!”
The NCSC urge us all to improve our cyber security as tensions increase between Russia and Ukraine
The CEO of National Cyber Security Centre, Lindy Cameron, has an article in the Daily Telegraph giving advice about cyber security in the light of the escalating situation between Ukraine and Russia. NCSC CEO Lindy Cameron urges UK organisations to take action – NCSC.GOV.UK As Ukraine tensions rise, UK organisations …