April 5, 2025
Hello all, Apache had a bad week with two vulnerabilities, the first in Parquet, and the second in Tomcat. Ivanti has another zero-day, Apple updated a lot of items, CrushFTP has some drama going on, and Microsoft celebrated 50 years.…
Tag Apple
March 15, 2025
(For a video version of the introduction below, click here) Hello all, Patch Tuesday from Microsoft and others came in with the March winds and left us a bit of a mess. Microsoft has six zero-days and six critical updates.…
March 8, 2025
(Click here for a video version of the introduction) Hello all, Microsoft continued to have some sporadic issues this past week, but nowhere near as widespread as they had the prior weekend. Hopefully, by the time this makes it to…
February 22, 2025
(For a video version of the introduction below, go to my LinkedIn post.) Hello all, This was somewhat of an interstitial week with less headline defects and vulnerabilities, but it was balanced by plenty of other news items. Some of…
February 15, 2025
(Select here for a video version of my introductory comments from below) Hello all, Patch Tuesday came in with only a small bang this month with 4 zero days, two of which are under active exploitation, and 55 flaws. A…
February 8, 2025
(For a video of the introduction below, click here) Hello all, Last week didn’t bring us too many surprises. DeepSeek’s AI model is proving to be effective, but their security and AI guardrails have been demonstrated to be practically nonexistent.…
February 1, 2025
(Select here for a video version of my opening commentary) Hello all, Unless your system administrators programmed your web and email filters to block it, the news of the week has been DeepSeek AI, the gains and pitfalls of this…
December 14, 2024
Hello all, Patch Tuesday didn’t disappoint this past week. Hundreds of flaws, defects, and vulnerabilities had fixes proffered by their respective vendors and developers as holiday gifts to already overworked defenders. According to Tenable, Microsoft alone has lobbed 1,009 security…
December 7, 2024
Hello all, It has been a busy week with security related news. The Chinese hack into telecommunication providers continues to dominate, with government agencies urging everyone to use encrypted messaging and communication apps and processes due to the depth and…
November 23, 2024
Hello all, I was rather pleased to notice that there are at least twelve links in this week’s edition that talk about wins by the defenders, and even some by our AI friends. Some of the larger news items to…
November 9, 2024
Hello all, This past week has some nice wins from the cyber-defenders; 41 arrests of evil people, with more coming, over 22,000 malicious servers taken offline, the person responsible for the Snowflake breach behind bars, and scores of Nigerian scammers…
November 2, 2024
Hello all, Thankfully the US quadrennial election cycle is nearly finished. The incessant and continual droning of half-truths, outright lies, click-bait email and advertisements, deep-fakes, fear and doubt mongering, deceptive text messages, and just downright evil that has been so…