The US government Cybersecurity and Infrastructure Security Agency (CISA) has issued the following security advisories: Citrix Releases Security Updates for ADC and Gateway | CISA VMware Releases Security Updates | CISA This is the advisory for Microsoft’s Patch Tuesday: Microsoft Releases November 2022 Security Updates | CISA
Yesterday was Patch Tuesday
It comes round every month – make sure your team has updated. Here is a link to Lawrence Abrams’ excellent roundup of the updates and patches from Microsoft at Bleeping Computer. It includes details of the zero-day vulnerabilities patched: Microsoft November 2022 Patch Tuesday fixes 6 exploited zero-days, 68 flaws …
CISA adds seven vulnerabilities to the Known Exploited Vulnerabilities Catalog
The US government Cybersecurity and Infrastructure Security Agency has issued security advisories for Microsoft and Samsung products: CISA Adds Seven Known Exploited Vulnerabilities to Catalog | CISA
Because It’s Friday – bringing two of my favourite Friday themes together…
Here is something from Scott Adams, to make you smile at the end of the week. It brings together coffee and artificial intelligence: Ai Based On Wally – Dilbert Comic Strip on 2022-11-02 | Dilbert by Scott Adams The cartoon got me thinking – kill the AI – which reminded …
Continue reading “Because It’s Friday – bringing two of my favourite Friday themes together…”
Emotet is back
Just when it looked like the Emotet spamming/malware operation had stopped, there are widespread reports that it has restarted. Emotet botnet starts blasting malware again after 5 month break (bleepingcomputer.com) Infected Microsoft Office documents are Emotet’s favoured method of malware distribution. Once the email has slipped past your technical defences, …
What do you know about going passwordless? Find out here why you should do it.
Passwordlessness now extends to PayPal… …at least if you have an iPhone. PayPal ditches passwords, at least on Apple devices • The Register Ditching passwords is the best step in preventing the recycling of passwords by users and the subsequent credential stuffing attacks by threat actors. Find out in this …
Continue reading “What do you know about going passwordless? Find out here why you should do it.”
What are the most spoofed brands in social engineering/phishing attacks?
It is not really a surprise, with the exponential rise in home shopping and deliveries because of the pandemic, that the delivery service DHL is the most impersonated organisation when it comes to cyber attacks: DHL named most-spoofed brand in phishing • The Register Microsoft and LinkedIN are close behind. …
Continue reading “What are the most spoofed brands in social engineering/phishing attacks?”
