CISA Security Advisories – and why checking this post and software patching is important

software patches are essential cybersecurity

CISA is the US government’s Cybersecurity and Infrastructure Security Agency and a very good source cyber security and software patching information. Last week they posted several software patching updates and known vulnerabilities that are being exploited and mitigations for them. Samba Releases Security Updates for Multiple Versions of Samba | …

Has June’s Patch Tuesday broken some Microsoft 365 sign-ins? UPDATE 22 June 2022

This post was first published on 20 June 2022 Update 22 June 2022 We have not had to wait for the next Patch Tuesday for the fix – Microsoft has issued an out-of-band patch for Windows: Windows emergency update fixes Microsoft 365 issues on Arm devices (bleepingcomputer.com) Original post There …

CPU vulnerabilities – and it does not matter if you are team Intel, team AMD or team Apple!

cpu 200

There have been two pieces of recent research that are pointing to serious issues with a lot of the silicon we use to power our computers. Some of which may be irreparable. The Apple M1 attack is called PACMAN, as it exploits the Pointer Authentication Code (PAC). This attack bypasses …

The log4j threat has not gone away

Here is an attack in the world targeting machines with malicious rootkits. Even though their code is poor, it is still an issue. Linux botnet exploits Log4j flaw to hijack Arm, x86 systems • The Register Log4j at Smart Thinking Solutions