Cybersecurity Starts in the Boardroom
It comes round every month – make sure your team has updated. Here is a link to Lawrence Abrams’ excellent roundup of the updates and patches from Microsoft at Bleeping Computer. It includes details of the zero-day vulnerabilities patched: Microsoft November 2022 Patch Tuesday fixes 6 exploited zero-days, 68 flaws …
The issues with Microsoft’s Windows SSL/TLS handshake failures is too important to wait for next month’s Patch Tuesday: Microsoft fixes Windows TLS handshake failures in out-of-band updates (bleepingcomputer.com)
So, everyone knows what that means, for the users, slow internet connections as we all gather in those vital updates, for the administrators, checking what needs to be done and checking that it has happened – including checking that the users have not skipped the updates because they are too …
Continue reading “Yesterday was Patch Tuesday for Microsoft”
Before I start this post – remember you should have Windows updates set to automatic (we do make exceptions for some Windows servers) and you should be able to monitor the update status on all your organisation’s computers. You cannot check whether everyone has updated? Then do something about it …
CISA has issued security advisories for a range of vendors: Adobe Releases Security Updates for Multiple Products | CISA Apple Releases Security Updates for Multiple Products | CISA Microsoft Releases September 2022 Security Updates | CISA The US Cybersecurity and Infrastructure Security Agency also issues advisories on Industrial Control Systems …
Continue reading “CISA security advisories for Adobe, Microsoft and Apple”
