The title says it all – here is Johannes’ article for the details: An Update on CVE-2022-26809 – MSRPC Vulnerability – PATCH NOW – SANS Internet Storm Centre Microsoft’s advice: CVE-2022-26809
Software vulnerabilities, patches and updates are an important part of a “defence in depth” cyber security plan
US federal alert warns of the discovery of malicious cyber tools | US national security | The Guardian I use the Cybersecurity and Infrastructure Security Agency, (CISA) a lot. Many of the blog posts I run here, start there. However there is a vast amount of information on the CISA …
CISA among other urge Apache users to get patching
Apache has issued another patch for a vulnerability in Struts 2 framework for Java applications as the one issued in 2020 did not quite work. Apache says 2-year-old Struts bug wasn’t fully fixed • The Register S2-062 – Apache Struts 2 Wiki – Apache Software Foundation
Are your patches and updates being done everywhere?
Patch Tuesday has come around again – and time for you check that ALL your updates and patches are up to date – not just your Microsoft ones. I know they are supposed to happen automatically but check anyway! Microsoft April 2022 Patch Tuesday – Sans Internet Storm Centre Microsoft’s …
Continue reading “Are your patches and updates being done everywhere?”
Some Apple devices could still be vulnerable
Apple has recently released a number of patches across a wide range of devices but research shows it is not patching the vulnerabilities everywhere. These operating systems have been missed out macOS Big Sur or macOS Catalina. Apple patched critical macOS flaws in Monterey only • The Register A big …
Continue reading “Some Apple devices could still be vulnerable”