This is a classic supply chain attack. UK based FishPig, seller of Magento WordPress integrations, ecommerce software has discovered that its distribution server had been compromised, which allowed threat actors backdoor access to the customer’s systems. The ecommerce software is believed to be used by more than 200,000 websites. Breach …
CISA security advisories for Adobe, Microsoft and Apple
CISA has issued security advisories for a range of vendors: Adobe Releases Security Updates for Multiple Products | CISA Apple Releases Security Updates for Multiple Products | CISA Microsoft Releases September 2022 Security Updates | CISA The US Cybersecurity and Infrastructure Security Agency also issues advisories on Industrial Control Systems …
Continue reading “CISA security advisories for Adobe, Microsoft and Apple”
Check your Apple device is patched
Apple has pushed out a number of security patches for iPhones, iPads and Macs: About the security content of iOS 15.7 and iPadOS 15.7 – Apple Support This is the eight zero-day vulnerability for Apple devices patched so far this year. They should happen automatically – but I always check, …
If you have an HP computer, you had better read this article – and then take action
Read the article from Bleeping Computers or just jump to HPs page to see if your organisation is using one of the affected devices – but if you know you have an HO computer do something… Firmware bugs in many HP computer models left unfixed for over a year (bleepingcomputer.com) …
CISA adds twelve vulnerabilities to the Known Exploited Vulnerabilities Catalog
These include products from Google, D-Link, QNAP, Apple, MicroTik, Oracle, Fortinet, Netgear and Android, with D-Link getting the most mentions. CISA Adds Twelve Known Exploited Vulnerabilities to Catalog | CISA
