Cybersecurity Starts in the Boardroom
It comes round every month – make sure your team has updated. Here is a link to Lawrence Abrams’ excellent roundup of the updates and patches from Microsoft at Bleeping Computer. It includes details of the zero-day vulnerabilities patched: Microsoft November 2022 Patch Tuesday fixes 6 exploited zero-days, 68 flaws …
Threat actors are carrying out massive attacks, looking for unpatched Cisco AnyConnect Windows clients: Cisco AnyConnect Windows client under active attack • The Register
This post was first made on 14 October 2022 Original Post Threat actors do not care who they infect as long as they pay up. Now fake anti-virus and security updates for Windows 10 have been circulating and deploying Magniber ransomware – the zip files contain JavaScript that initiates the …
Continue reading “Ransomware targets home users – with some advice for you – UPDATED”
The issues with Microsoft’s Windows SSL/TLS handshake failures is too important to wait for next month’s Patch Tuesday: Microsoft fixes Windows TLS handshake failures in out-of-band updates (bleepingcomputer.com)
I have said this before, do not use Microsoft Remote Desktop (RDP) as it is too easily attacked and exploited, even if you use a non-standard port number – there are better solutions out there. Just to make the point – here is a new ransomware attack exploiting RDP. – …
Continue reading “Do Not Use Microsoft Remote Desktop – it can be a gateway for ransomware.”
