The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of our go-to information sources for cyber security information. Whilst I have been away my team have been keeping up with the news there, but I have not! Here is a round-up of their latest alerts: VMware Releases Security …
Vulnerabilities and Patches
The US government Cybersecurity and Infrastructure Security Agency (CISA) has issued a number of security advisories and added to its Known Exploited Vulnerabilities Catalog. This is one of my key sites for keeping our clients up to date with vulnerabilities and patches. Cyber Security Advisories Not all of this software …
Available for sale – a toolkit to steal credentials
AlienFox is a malicious modular toolkit that threat actors can buy via a private Telegram channel. New AlienFox toolkit steals credentials for 18 cloud services (bleepingcomputer.com) The malware can be configured to scan for misconfigured servers and steal authentication details and credentials for a range of popular cloud-based services such …
Continue reading “Available for sale – a toolkit to steal credentials”
CISA security advisory for Drupal
Drupal is a CMS platform, similar to WordPress, so it is out there on the internet, vulnerable for exploitation. So if you use Drupal get it patched: Drupal Releases Security Advisory to Address Vulnerability in Drupal Core | CISA Do you know if your organisation’s website is hosted on Drupal …
CISA had a busy day yesterday
I regularly check the The US government Cybersecurity and Infrastructure Security Agency (CISA) site s it is a good source for patch and vulnerability alerts. Yesterday they posted security advisories for a range of products including Cisco, Drupal, and VMware: Cisco Releases Security Advisories for Multiple Products | CISA Drupal …
