US federal alert warns of the discovery of malicious cyber tools | US national security | The Guardian I use the Cybersecurity and Infrastructure Security Agency, (CISA) a lot. Many of the blog posts I run here, start there. However there is a vast amount of information on the CISA …
This is what happens when you do not run patches and updates
The Information Commissioner’s Office has issued a £98,000 penalty to Tuckers Solicitors based in London. The solicitors firm suffered a ransomware attack where confidential information including, PII and case material was lost. UK lawyer fined for not patching fast enough before attack • The Register
An oldie but still out in the wild
The Equation Editor vulnerability in Microsoft Office was fixed back in 2017 but SANS recently found a new phishing email using it in the wild. It really highlights why updates and patches are so important – especially when you are using older software. Have a look at the ingenuity used …
Patches for Adobe Commerce, Chrome and Magento
This came out late last night our time. Adobe, Chrome patch security bugs under active attack • The Register
Vendors are patching vulnerabilities faster
Updates and patches are an essential part of any comprehensive business cyber security plan. This report from Google’s Project Zero shows that vendors are patching software vulnerabilities faster – which means we get the patches faster. Project Zero: A walk through Project Zero metrics (googleprojectzero.blogspot.com)
