Cybersecurity Starts in the Boardroom
SANS Internet Storm Diary has a comprehensive report on Microsoft’s Patch Tuesday: Microsoft December 2022 Patch Tuesday – SANS Internet Storm Center Here is the Microsoft release page: December 2022 Security Updates – Release Notes – Security Update Guide – Microsoft The Microsoft report gives much more information on the …
The US Cybersecurity and Infrastructure Security Agency has added a new vulnerabilities to it’s Known Exploited Vulnerabilities Catalog. CISA Adds One Known Exploited Vulnerability to Catalog | CISA This is an interesting issue, as credentials had been hard coded into the application: “Atlassian Questions For Confluence App has hard-coded credentials, …
The US Cybersecurity and Infrastructure Security Agency has added eight new vulnerabilities to it’s Known Exploited Vulnerabilities Catalog. CISA Adds Eight Known Exploited Vulnerabilities to Catalog | CISA
Following this story, earlier this week, about the privacy focused cloud storage company Mega: If Mega cannot decrypt your files, don’t worry hackers can… – Smart Thinking Solutions There is an update on Bleeping Computers: MEGA fixes critical flaws that allowed the decryption of user data (bleepingcomputer.com) Which is better …
Mega is a popular cloud storage service – with over 250million users. A minimum requirement for any cloud storage service is that the data at rest in their data centres must be encrypted. It seems that Mega’s is not, even though their own publicity states your data will be safely …
Continue reading “If Mega cannot decrypt your files, don’t worry hackers can…”
