Cybersecurity Starts in the Boardroom
It has been a busy couple of weeks for those threat actors and now the Cybersecurity and Infrastructure Security Agency (CISA) has caught up and added twenty-one known exploits this week – so far. CISA Adds 21 Known Exploited Vulnerabilities to Catalog | CISA Many mainstream products are in the …
Continue reading “Twenty-one additions to the known exploited database!”
CISA has issued an advisory about Firefox products. Mozilla Releases Security Products for Multiple Firefox Products | CISA
If the patch is not effective or worse it breaks something else whilst fixing the vulnerability. This happened to Microsoft: Microsoft fixes Windows authentication woes • The Register But you still have to run those patches and updates as an unpatched system is a target for threat actors. Better to …
Continue reading “I love patches as part of a cyber security plan – but there is a problem!”
If you use or responsible for a School Management system – check this does not impact you. The ICO takes a dim view of child privacy violations. Researchers find backdoor lurking in WordPress plugin used by schools | Ars Technica
This is pretty simple – do you use VMWare if so get it patched or change it. The Spring Cloud framework vulnerability is proving a honey pot for attackers. CISA issues directive for exploited VMware bug after IR team deployed to ‘large’ org – The Record by Recorded Future Patch …
Continue reading “VMWare is a real cyber security issue – fix it or get rid of it CISA warns”
