Just one new vulnerability on Cybersecurity and Infrastructure Security Agency’s Known Exploited Vulnerabilities Catalog, for the F5 environment. CISA Adds One Known Exploited Vulnerability to Catalog | CISA
Fork bombs for example – why you have to have up to date anti-virus software, be turned on to patching and training UPDATED 11 May 2022
This post was first published on 9 May 2022 Here is yet another example of malware and it’s delivery system from SANS TA578 using thread-hijacked emails to push ISO files for Bumblebee malware – SANS Internet Storm Centre The rise of Bumblebee malware was first reported earlier this month: More …
Patch Tuesday – May 2022
Here is SANS’ excellent round-up of Microsoft’s Patch Tuesday: Microsoft May 2022 Patch Tuesday – SANS Internet Storm Centre There are the usual array of issues that Microsoft is fixing be they become an issue – one of the Windows patches fixes Windows LSA, this impacts the authentication of accounts …
CISA security advisory from Microsoft for various Azure products.
Microsoft Releases Security Advisory for Azure Data Factory and Azure Synapse Pipelines | CISA These are enterprise products – but you know the drill:
CISA Cisco updates notifications
This is an Enterprise level update. Cisco Releases Security Updates for Enterprise NFV Infrastructure Software | CISA Here are some more details that make it easier to see if this impacts you: VM escape and root access bugs fixed in Cisco NFV infrastructure software | ZDNet
