Cybersecurity Starts in the Boardroom
If you use or responsible for a School Management system – check this does not impact you. The ICO takes a dim view of child privacy violations. Researchers find backdoor lurking in WordPress plugin used by schools | Ars Technica
This is pretty simple – do you use VMWare if so get it patched or change it. The Spring Cloud framework vulnerability is proving a honey pot for attackers. CISA issues directive for exploited VMware bug after IR team deployed to ‘large’ org – The Record by Recorded Future Patch …
Continue reading “VMWare is a real cyber security issue – fix it or get rid of it CISA warns”
The US Cybersecurity and Infrastructure Security Agency has issued a joint advisory with the cyber security organisations from the UK, New Zealand, Netherlands and Canada listing ten regularly exploited weak security controls, poor configurations, and bad practices that allow threat actors to compromise networks. Here is the article: Weak Security …
Continue reading “CISA joint advisory on access control. Are you still missing MFA?”
Here is the US Cybersecurity and Infrastructure Security Agency (CISA) notice on the Apple updates – which we have highlight here on Smart Thinking. Apple Releases Security Updates for Multiple Products | CISA Time to patch everything Apple – UPDATED 18 May 2022 – Smart Thinking Solutions
The vulnerabilities are for Zyxel firewalls and VMWare Spring Cloud. CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA The Apache issue is with Tomcat: Apache Releases Security Advisory for Tomcat | CISA Researchers, NSA cybersecurity director warn of hackers targeting Zyxel vulnerability – The Record by Recorded Future
