The US Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft vulnerability to it’s Known Exploited Vulnerabilities Catalog: CISA Adds One Known Exploited Vulnerability to Catalog | CISA This vulnerability was addressed in June’s Microsoft Patch Tuesday. Guidance on Applying June Microsoft Patch | CISA
The Follina threat has not gone away just because Microsoft has issued a patch – Octagon has the solution
The threat actors are still attempting to exploit the Follina flaw in Microsoft Word – looking for those of you out there who have not bothered to run the updates: XFiles info-stealing malware adds support for Follina delivery (bleepingcomputer.com) Have you checked all the machines in your organisation have run …
Mozilla releases security updates for a range of products
Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird | CISA
The Most Dangerous Software Weaknesses
The 2022, list of the most dangerous software has been published at Common Weakness Enumeration (CWE): CWE – 2022 CWE Top 25 Most Dangerous Software Weaknesses (mitre.org) Who are CWE: Common Weakness Enumeration (CWE™) is a community-developed list of common software and hardware weakness types that have security ramifications. CWE …
Optional Windows 10 update
Microsoft has issued a Windows 10 update to fix some bugs and add some printing features. Windows 10 KB5014666 update brings new printing features, bug fixes (bleepingcomputer.com)
