CISA is the US government’s Cybersecurity and Infrastructure Security Agency and a very good source cyber security and software patching information. Last week they posted several software patching updates and known vulnerabilities that are being exploited and mitigations for them. Samba Releases Security Updates for Multiple Versions of Samba | …
Has June’s Patch Tuesday broken some Microsoft 365 sign-ins? UPDATE 22 June 2022
This post was first published on 20 June 2022 Update 22 June 2022 We have not had to wait for the next Patch Tuesday for the fix – Microsoft has issued an out-of-band patch for Windows: Windows emergency update fixes Microsoft 365 issues on Arm devices (bleepingcomputer.com) Original post There …
Continue reading “Has June’s Patch Tuesday broken some Microsoft 365 sign-ins? UPDATE 22 June 2022”
CPU vulnerabilities – and it does not matter if you are team Intel, team AMD or team Apple!
There have been two pieces of recent research that are pointing to serious issues with a lot of the silicon we use to power our computers. Some of which may be irreparable. The Apple M1 attack is called PACMAN, as it exploits the Pointer Authentication Code (PAC). This attack bypasses …
The log4j threat has not gone away
Here is an attack in the world targeting machines with malicious rootkits. Even though their code is poor, it is still an issue. Linux botnet exploits Log4j flaw to hijack Arm, x86 systems • The Register Log4j at Smart Thinking Solutions
The Spectre bug is back
A v.2 Spectre bug bug, with the potential to leak your data, has been found. Intel and ARM have been issuing advisories and statements on how it impacts their silicon chip processors. This new bug bypasses recent changes at the silicon level in their CPUs, implemented to address Spectre. Intel, …