I ended last week with an infected Android app, now there is an advisory from CISA to patch a vulnerable Android driver: CISA warns govt agencies to patch actively exploited Android driver (bleepingcomputer.com) NVD – CVE-2021-29256 (nist.gov) Android devices that are used by employees as “BYOD” devices are always difficult …
CISA Security Advisories
Regular readers know that I use the US government Cybersecurity and Infrastructure Security Agency (CISA) website as a reliable source of information on software and hardware vulnerabilities. Ones that impact the organisations we support are escalated to our support team, then I write about those and the rest here, for …
Reduce that Attack Surface
The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of our go to location for information about exploited vulnerabilities and patching – the type of resource I discuss in this week’s CyberAwake article: The Zero-day Threat – What can you do about it? Keeping up with these issues …
The MOVEit hack moves on
The Clop ransomware gang has started the process of extorting organisations that they compromised through exploiting the zero-day flaw in MOVEit the corporate file sharing software. Among the thirteen companies listed on Clop’s data leak website is Shell and the University of Georgia. Clop ransomware gang starts extorting MOVEit data-theft …
Cyber Security and Hardware
Both Martin, over on Octagon and I wrote about the importance of hardware in your cyber security plan. Cyber Essentials and hardware | Octagon Technology Buy new hardware! | Smart Thinking Solutions This came about because of some serious flaws in various Barracuda Networks devices. Now Barracuda Networks has issued …
