March 11, 2023
Hello all,The Red-N Weekly Cyber Security News newsletter is below the Notable Callouts as usual. This week is a bit lighter on news than prior weeks, Tuesday is Patch Tuesday, so I expect next week will be rather busy. Notable…
Hello all,The Red-N Weekly Cyber Security News newsletter is below the Notable Callouts as usual. This week is a bit lighter on news than prior weeks, Tuesday is Patch Tuesday, so I expect next week will be rather busy. Notable…
Hello all,The Red-N Weekly Security newsletter is below the Notable Callouts as usual. Notable Callouts: Having incomplete security coverage, meaning devices that don’t have your tools and monitoring on them, is worse than not having any coverage. In the latter…
Hello all,The Red-N Weekly Security newsletter is below the Notable Callouts as usual. Notable Callouts: Two pieces of late breaking news that didn’t make it to the newsletter: An excellent list of 10 Commandments of Information Technology crossed my desk…
Hello all,The first Red-N Weekly Security newsletter for 2023 is below the notable callouts from this week. There are two new topic sections within the body of the newsletter – Ransomware, and Cyber Insurance. There were significant items to report…
Hello all,Merry Christmas, Kwanza, Festivus, Hanukkah, Happy Holidays, and Happy New Year! The Red-N Weekly Security newsletter is below the callouts below. Just because we are celebrating holidays does not mean that the dirt-bags out there are taking a break. Notable…
Hello all, The Red-N Weekly Security newsletter is below the callouts below. Notable callouts this week include: Also in this week’s issue are several links about cyber insurance. Remember, the second rat gets the cheese. In security, you cannot rest…
Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text (Text4Shell) Our new scanner for Text4Shell – Silent Signal Techblog – Scanner on Github Vulnerabilities in Cisco Identity Services Engine require your attention Heat left by users’…
Microsoft October 2022 Patch Tuesday fixes two zero-days, 1 used in attacks, 84 flaws, 13 of which are critical The October 2022 Exchange SUs do not contain fixes for the zero-day vulnerabilities reported on September 29, 2022 Windows 11 KB5018427…
Fortinet warns admins to patch critical auth bypass bug immediately Updated information: Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server Steam Gaming Phish Showcases Browser-in-Browser Threat ‘IT security issue’ impacts multiple hospitals across several states Microsoft investigates Windows…
Two Zero-Day Microsoft Exchange vulnerabilities without a patch are being exploited – mitigation steps published Microsoft Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server Critical Remote Hack Flaws Found in Dataprobe’s Power Distribution Units WhatsApp 0-Day Bug Let…