Hello all, Most of us in the United States celebrated Labor Day, and the unofficial end of Summer with a much-deserved day off from work. It was a welcome respite to enjoy the company of friends, family, and if you were so inclined, the eating of burgers and hotdogs. Even though…
Hello all, For those is the USA, I pray that you’ve returned from the long holiday weekend refreshed and did not discover a poorly written note on your computers advising you that your company has been subjected to a post-paid pen test. Sadly, ransomware and extortion are continuing to grow. As…
Hello all, This week we bid farewell to Red-N-Security News and welcome Red Dot Security News. New name, same content scoured from all over the web in the prior week, bringing commentary of items that I find of high value or just plain interesting. As usual, my commentary is followed by…
Hello all, I didn’t expect the massive amounts of vulnerabilities and software defects that were announced, and mostly fixed, this past week. I did expect a goodly volume, since it was Patch Tuesday, but not that many. The biggest surprise is Adobe. They nearly rivaled Microsoft in quantity. More on that…
Hello all, Welcome to the Hacker Summer Camp edition of the Red-N Security Newsletter. Thank you for your patience, our team didn’t return from Las Vegas until after midnight on Monday. And there were so many vulnerabilities and news items generated by the trifecta of Black Hat, DefCon, and BSidesLV, conferences…
Hello all, This week has been rather uncommon in how quiet it has been with the low level of major issues and announcements, unless you count Microsoft experiencing a successful Distributed Denial of Service (DDoS) attack that severely impacted their operations for about a day. Of course there was plenty of…
Hello all, After the rather grueling CrowdStrike incident that started a week ago on Friday for many in the IT industry, I’m sure that they were happy to see that the latter half of this past week was somewhat calm. That’s not to say that nothing happened, just nothing that show-stopping…
Hello all, It started out as a normal week with a few critical updates, and the normal onslaught of attacks, vulnerability reveals, and good-guy victories. Then Friday came. If you’ve been on vacation, or oblivious to the news, in the wee hours of Friday morning, CrowdStrike (a US based cybersecurity vendor…
Hello all, As expected, Patch Tuesday’s offerings were prolific. Adobe, Fortinet, a large number of Industrial Control System (ICS / OT) vendors, Mozilla, Microsoft, Netgear, Palo Alto, VMware, and more released updates and patches this week to address flaws and vulnerabilities in their products. We’ll call out a few of them…
Hello all, This coming Tuesday is Patch Tuesday for Microsoft and others. Expect some time-sensitive incoming items that will need to be prioritized. Don’t just knee-jerk respond to the latest thing making news, make sure that you evaluate the actual risk to your particular organization, including factoring in the cost and…
Hello all, The unfolding tragedy of CDK Global continues to dominate both the tech and automotive news as automobile and truck dealerships across North America have been forced to regress two decades and resort to manual, analog methods of conducting business. Many find that nearly impossible to accomplish and are crippled.…
Hello all, The news was somewhat light this week, meaning that the number of critical items seems low to me. But we’ve still got plenty for you to read about, so onward. The volume of news and other can appear overwhelming, the best strategy is to read the Notable Callouts below…