Hello all, As if the growing menace of the React2Shell vulnerability undergoing massive ramp-up of active attack and exploitation wasn’t enough, this past week was Patch Tuesday for the likes of Adobe, Microsoft and SAP. But wait there was more!…
Hello all, What started out as a somewhat quiet week, with only one nasty item early on from Google Chrome, escalated slowly with the last few days bringing reveals of multiple critical and high-severity vulnerabilities in products by Cisco, CrushFTP,…
Hello all, Apache had a bad week with two vulnerabilities, the first in Parquet, and the second in Tomcat. Ivanti has another zero-day, Apple updated a lot of items, CrushFTP has some drama going on, and Microsoft celebrated 50 years.…
Hello all, The end is near! No, not of the world, but of the year. And what a year it has been! There are over half a dozen links that herald and decry the past year in the cyberverse as…
Hello all, Despite the upcoming winter break, the news does not sleep. There was a lot of activity in the prior week that was interesting, disturbing, and some was even delighting. So, let’s get to the cyber news. As usual,…
Hello all, Patch Tuesday didn’t disappoint this past week. Hundreds of flaws, defects, and vulnerabilities had fixes proffered by their respective vendors and developers as holiday gifts to already overworked defenders. According to Tenable, Microsoft alone has lobbed 1,009 security…
Hello all, Hurricane Milton moved ashore with a swath of renewed devastation across a large portion of Florida’s West Coast this past week, further stressing and testing Disaster Recovery and Business Continuity plans still attempting to recover from Hurricane Helene.…
Hello all, Congratulations Cyber Warrior! You’ve made it to the end of another year. It has been a daunting one with a massive AI-fueled upswing in phishing, smishing, malvertising, hacking, cracking, encrypting, DDoSing, stealing and destruction. Experts are sadly predicting…
Hello all, Happy November all! This week was somewhat quiet until Cisco threw out a bunch of vulnerability updates. There are quite a few other significant and interesting items, so let’s get to them. The volume of news and other…