April 29, 2023



Hello all,
On the heels of the RSA conference, there is a significant amount of news this week with a good number of vulnerabilities and bugs being patched and holes being plugged. As usual, the Red-N Weekly Cyber Security News newsletter is below the Notable Callouts.

Notable Callouts:

  • APC leads the pack with an RCE that could lead to device takeover and meltdown.
  • Cisco stays in the headlines for another week, this time for an XSS zero-day bug in their Cisco Prime Collaboration Platform.
  • ConnectWise’s rumored sale to Bain Capital from Toma Bravo has apparently been rejected. However, rumors still persist that a sale is being courted and is imminent.
  • Illumina DNA sequencers have critical flaws that need splicing a patch in to resolve.
  • Microsoft is warning about exploitation of PaperCut. Microsoft has announced that Windows 10 22H2 is the last feature release for that OS. Any new features will come to newer OS’es. Additionally, Microsoft announced that they intend to transition their 365 apps to a new domain of “cloud.microsoft”.
  • NSA’s Cybersecurity Director, Rob Joyce, is warning that we need to “buckle up” for generative AI. In somewhat related news, the US Deputy Attorney General Lisa Monaco (formerly with the NSA) said that the US will be focusing more on “stifling” attacks vs. prosecution.
  • PaperCut is making headlines for bad reasons. The previously announced vulnerability is now being very actively exploited. Educational institutions are at particular risk due to high adoption of this product. Guidance has been published to reveal if it has been exploited.
  • Salesforce is in the news, although technically it isn’t their fault. Many public sites have been found to be misconfigured and leaking private data.
  • SolarWinds (insert full body shudder here) has patched some high-severity vulnerabilities.
  • TP-Link has some gear being exploited by the Mirai botnet. If you have it, patch it or replace it.
  • VMware’s SLP has been shown capable of enabling massive DDoS attacks, and VMware also released patches for VMware Workstation and Fusion.
  • Zyxel finishes our alphabet stew with a good number of firewall devices that are vulnerable to RCE and other bugs that need patching.
  • In Ransomware, Malware, and Vulnerabilities News, a warning about Firmware becoming the next frontier for cybersecurity. It bears noting how many headlines now have “AI” or “ChatGPT” in them. There has been a major evolutionary leap made, and it is going to be interesting.
  • In Other News Event of Note and Interest, speaking of AI. Microsoft has introduced a new product named Microsoft Designer.
  • In Cyber Insurance News, there’s a link to an excellent article about “What MSPs Should Know about Cyber Insurance in 2023”. It is well worth reading.

It never ceases to amaze me when I read about some “creative solution” that resulted in a major failure or incident. I wonder how Artificial Intelligence will fare against natural stupidity. Perhaps we don’t have quite so much to fear from AI as we think.

Viscount Zebulon Wamboldt Pike
Red-N Weekly Cyber Security News

Headline NEWS

Ransomware, Malware, and Vulnerabilities News

Other News Events of Note and Interest

Cyber Insurance News
Share this with: