The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of my go to places for advice on product vulnerabilities and patching. There were two this week for VMware and Mozilla Firefox. VMware Releases Security Update for Aria Operations for Networks | CISA Mozilla Releases Security Updates for Multiple …
Zyxel firewall flaw
For smaller organisations updating network devices is often overlooked. CISA is warning of a flaw in Zyxel firewalls that is being actively exploited by hackers even though the vendor issued patches for the vulnerability over a month ago! CISA Adds One Known Exploited Vulnerability to Catalog | CISA Hackers exploit …
MOVEit secure file transfer compromised
A security advisory and advice has been issued by Progress for their popular secure file transfer software MOVEit. The flaw could give elevated privileges to threat actors to exfiltrate information that the client considers secure, without the client detecting the activity. Progress Software Releases Security Advisory for MOVEit Transfer | …
CISA Advisory
The US government Cybersecurity and Infrastructure Security Agency (CISA) had added a vulnerability for Barracuda Networks devices to the Known Exploited Vulnerabilities Catalog: CISA Adds One Known Exploited Vulnerability to Catalog | CISA
Patch those iOS devices
We write about the issues with Android devices – see Monday and the ongoing updates – but Apple and iOS are not without their flaws. Now the US government Cybersecurity and Infrastructure Security Agency (CISA) is advising all branches of the US Government to check that the recent iOS patches …
