Cybersecurity Starts in the Boardroom
SANS Internet Storm Diary has a comprehensive report on Microsoft’s Patch Tuesday: Microsoft December 2022 Patch Tuesday – SANS Internet Storm Center Here is the Microsoft release page: December 2022 Security Updates – Release Notes – Security Update Guide – Microsoft The Microsoft report gives much more information on the …
Software is difficult and no matter how much vendors test, both black and white hackers will find vulnerabilities once the software has been released. The issue is how fast does the vendor respond with patches once a vulnerability has been found. Google Chrome emergency update fixes 9th zero-day of the …
Continue reading “Google Chrome’s 9th zero-day vulnerability of 2022 now patched”
Apple declares that sharing device usage information with them is anonymous, but researchers are claiming this is not true and Apple can associate actual iCloud users to this shared information. Apple Device Analytics Contain Identifying iCloud User Data, Claim Security Researchers – MacRumors Would Apple do this? They are already …
Continue reading “Can Apple identify us from “anonymous” data?”
Zero-day attacks will always be a serious issue for anyone involved in cyber security. A zero-day cyber attack is one that happens in the gap between the hackers discovering a vulnerability in a system and putting an exploit out in the wild and the software vendors, discovering the same software …
Continue reading “Newly discovered zero-day vulnerability in Windows is being exploited now”
The US government Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft Windows flaw to the Known Exploited Vulnerabilities Catalog. CISA Has Added One Known Exploited Vulnerability to Catalog | CISA
