GitHub is an useful development and versioning environment – part of it’s growth was to acquire another similar service NPM – a software depository. The software depository is now under possible attack from the simple of threat actors offering malicious packages with names that are just slightly different from the …
One known vulnerability added to the CISA database
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft vulnerability to it’s Known Exploited Vulnerabilities Catalog: CISA Adds One Known Exploited Vulnerability to Catalog | CISA This vulnerability was addressed in June’s Microsoft Patch Tuesday. Guidance on Applying June Microsoft Patch | CISA
The Follina threat has not gone away just because Microsoft has issued a patch – Octagon has the solution
The threat actors are still attempting to exploit the Follina flaw in Microsoft Word – looking for those of you out there who have not bothered to run the updates: XFiles info-stealing malware adds support for Follina delivery (bleepingcomputer.com) Have you checked all the machines in your organisation have run …
The two sides of Google
On one side we have the alleged Google as villian. Google sign-up ‘fast track to surveillance’, consumer groups say – BBC News We all know that the primary Google business model is based on knowledge and use of our personal data, to promote the effectiveness of it’s advertising product to …
Optional Windows 10 update
Microsoft has issued a Windows 10 update to fix some bugs and add some printing features. Windows 10 KB5014666 update brings new printing features, bug fixes (bleepingcomputer.com)
