US federal alert warns of the discovery of malicious cyber tools | US national security | The Guardian I use the Cybersecurity and Infrastructure Security Agency, (CISA) a lot. Many of the blog posts I run here, start there. However there is a vast amount of information on the CISA …
CISA among other urge Apache users to get patching
Apache has issued another patch for a vulnerability in Struts 2 framework for Java applications as the one issued in 2020 did not quite work. Apache says 2-year-old Struts bug wasn’t fully fixed • The Register S2-062 – Apache Struts 2 Wiki – Apache Software Foundation
You really have got to check your WatchGuard devices – care more about them than WatchGuard does!
WatchGuard – a market leader in security devices – appears to have kept a significant vulnerability secret – although it did patch the issue. WatchGuard failed to explicitly disclose critical flaw exploited by Russian hackers | Ars Technica If they patched the issue, then surely everything is fine. Well no. …
Some Apple devices could still be vulnerable
Apple has recently released a number of patches across a wide range of devices but research shows it is not patching the vulnerabilities everywhere. These operating systems have been missed out macOS Big Sur or macOS Catalina. Apple patched critical macOS flaws in Monterey only • The Register A big …
Continue reading “Some Apple devices could still be vulnerable”
Apple Updates – make sure they are done
SANS has a description of the various updates Apple has issued across it’s devices and operating systems. These are for vulnerabilities that are being actively exploited in the wild – so make sure the patches have been done – everywhere! Apple Patches Actively Exploited Vulnerability in macOS, iOS and iPadOS …
