The US Government Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory of threat actors exploiting the software issues in the F5 systems: Threat Actors Exploiting F5 BIG IP CVE-2022-1388 | CISA
CISA joint advisory on access control. Are you still missing MFA?
The US Cybersecurity and Infrastructure Security Agency has issued a joint advisory with the cyber security organisations from the UK, New Zealand, Netherlands and Canada listing ten regularly exploited weak security controls, poor configurations, and bad practices that allow threat actors to compromise networks. Here is the article: Weak Security …
Continue reading “CISA joint advisory on access control. Are you still missing MFA?”
CISA Apple Updates
Here is the US Cybersecurity and Infrastructure Security Agency (CISA) notice on the Apple updates – which we have highlight here on Smart Thinking. Apple Releases Security Updates for Multiple Products | CISA Time to patch everything Apple – UPDATED 18 May 2022 – Smart Thinking Solutions
CISA updates on Apache and two more vulnerabilities added to their database – UPDATED 18 May 2022
The vulnerabilities are for Zyxel firewalls and VMWare Spring Cloud. CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA The Apache issue is with Tomcat: Apache Releases Security Advisory for Tomcat | CISA Researchers, NSA cybersecurity director warn of hackers targeting Zyxel vulnerability – The Record by Recorded Future
Time to patch everything Apple – UPDATED 18 May 2022
The list of patches is at SANS, check your cyber security organisation information to see how this impacts you and fix it. The iPod Touch is still being supported in updates – but you would expect that from Apple. Apple Patches Everything – SANS Internet Storm Centre iOS 15.5 and …
Continue reading “Time to patch everything Apple – UPDATED 18 May 2022”