Cybersecurity Starts in the Boardroom
The US Cybersecurity and Infrastructure Security Agency has added one new vulnerability to it’s Known Exploited Vulnerabilities Catalog for a Microsoft Windows privilege escalation vulnerability – this has been addressed in Microsoft’s July 2022 Patch Tuesday. CISA Adds One Known Exploited Vulnerability to Catalog | CISA
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued several advisories about security patches available from a range of vendors, including Adobe and Citrix: Adobe Releases Security Updates for Multiple Products | CISA SAP Releases July 2022 Security Updates | CISA Citrix Releases Security Updates for Hypervisor | CISA
A hardware flaw like Spectre and Meltdown are always going to be a big issue for users and vendors alike. Patches and fixes are probably going to impact the performance of the CPUs and hardware. They are also going to an attack vector threat actors will constantly return as it …
A UK Government’s report looking at cybersecurity breaches across the country, (UK Government. 2022), prepared by Department for Digital, Culture, Media & Sport (and sport!) showed clearly email phishing is a real threat: “Of the 39% of UK businesses who identified an attack, the most common threat vector was phishing …
It is that time again – among the fixes and patches from Microsoft, for July 2022 is one addressing CVE-2022-22047, Windows Elevation of Privilege Vulnerability – according to Microsoft a zero-day flaw that is being exploited by threat actors. For more details see Bleeping Computer’s excellent round-up of Patch Tuesday: …
