Yesterday was the second Tuesday of the month that means our support team have been reviewing our client monitoring reports and the SOC to check that the Microsoft Patch Tuesday updates have been completed. Our team will keep an eye on the reports for the next day or two to check there …
Ahead of Microsoft’s Patch Tuesday – Apple Patches
You need to check these have been done on any iOS or macOS device that handles your organisation’s sensitive data. Johannes Ullrich on SANS INternet Storm Centre has an excellent summary of the updates: Apple Patches Everything: macOS, iOS, iPadOS, watchOS, tvOS updated. – SANS Internet Storm Center Auto-updates are …
Continue reading “Ahead of Microsoft’s Patch Tuesday – Apple Patches”
There is no choice but to run cyber security updates…
…but sometimes they go wrong. Microsoft has had to fix a number of problems following the April Patch Tuesday. Microsoft says April Windows updates break VPN connections (bleepingcomputer.com) Microsoft: April Windows Server updates cause NTLM auth failures (bleepingcomputer.com) I included these stories in this week of device security as a …
Continue reading “There is no choice but to run cyber security updates…”
Not a cyber security issue but it still needs patching…
Continuing the device theme this week – what happens when those devices we rely fail to work properly because they are missing a patch? If it is your firewall then you have a cyber security issue and you need to contact us for some help. If it is your alarm …
Continue reading “Not a cyber security issue but it still needs patching…”
Manage your security patching
Here are a couple of examples from the recent cyber-tech press of examples of software vulnerabilities that need patching… Promptly! Microsoft releases Exchange hotfixes for security update issues – BleepingComputer ArcaneDoor hackers exploit Cisco zero-days to breach govt networks – BleepingComputer The first illustrates that management is needed as not …
Why patching is important
Even though the US National Security Agency (NSA) reported this flaw to Microsoft and they patched it in their October 2022 Patch Tuesday, the threat group APT28 is still exploiting it. Microsoft: APT28 hackers exploit Windows flaw reported by NSA – BleepingComputer The Russian threat group uses a hacking tool …
Catching up with CISA
The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of our go-to information sources for cyber security information. Here is a round-up of their latest alerts: Apple Released Security Updates for Safari and macOS | CISA Cisco Releases Security Updates for Multiple Products | CISA Fortinet Releases Security …