Cybersecurity Starts in the Boardroom
There is an actively exploited zero-day flaw being reported, that Microsoft has not yet patched – so have a look at GTSC’s blog post: Warning: New attack campaign utilized a new 0-day RCE vulnerability on Microsoft Exchange Server | GTSC (gteltsc.vn) The post also includes some temporary mitigation whilst waiting …
Continue reading “Do you operate an Exchange Server? Is it patched and up to date?”
PuTTY, KiTTY and Sumatra PDF Reader – I did my due diligence before installing these – and now they have been targeted by ZINC, a state-sponsored group operating out of North Korea. ZINC weaponizing open-source software – Microsoft Security Blog Before writing this blog post I had checked my system …
Continue reading “Here is some of the open-source software I use – and it has all been targeted!”
Microsoft has been monitoring and seeing an increase in attacks using malicious OAuth applications, installed on compromise cloud servers that then facilitate mass spamming from Exchange Online servers. Malicious OAuth applications abuse cloud email services to spread spam – Microsoft Security Blog The attack started with the threat actor launching …
Continue reading “Mass spamming starts with no MFA and credential stuffing”
Here is an excellent outline of the latest security features updated or included in the new release of Microsoft Windows 11, by Jeff Burt over on The Register: What you’ll need to use Windows 11 22H2’s security features • The Register
Many office and web based applications, both commercial and bespoke use SQL servers of varying flavours – you or your cyber security consultant should know if your organisation is dependent on a Microsoft SQL server and what actions have been taken to protect it. Here is the threat, ransomware targeting …
Continue reading “Are you SQL servers secure? What, you do not know if you use SQL servers!”
