Hello all, Unlike the prior week, there was a lot to report on this week, starting with a brand-new way to extract your information from wireless networks, three-year old Cisco zero-day exploit, and more. The good guys had some nice…
Hello all, This week was somewhat light with almost no pants-of-fire alerts. There was one that needs quick attention, a Google Chrome zero-day that’s under active attack, and there were several CISA alerts that should be prioritized due to ongoing…
Hello all, The week started out rather ordinary with the usual level of malevolence and chaos inflicted on the world by cybercriminals, along with the usual proclamations of falling skies due to AI. And then my system got hit with…
Hello all, As if the growing menace of the React2Shell vulnerability undergoing massive ramp-up of active attack and exploitation wasn’t enough, this past week was Patch Tuesday for the likes of Adobe, Microsoft and SAP. But wait there was more!…
Hello all, What started out as a quiet week was rudely interrupted on Wednesday by a major vulnerability reveal in React Server Components. More on that in a moment. Headline NEWS: In Ransomware, Malware, and Vulnerabilities News: In Other News…
Hello all, You’d think that there’d be a bit less chaos a whole week after Patch Tuesday. Well, you’d be wrong. On Tuesday November 18, 2025, Cloudflare botched a routine update and took down major portions of their network and…
Hello all, It was a busy week for cyber vulnerabilities. Microsoft and a host of others unleashed their Patch Tuesday lists, CISA alerted on Adobe and F5, and Fortinet plugged severe holes, as did Ivanti and Veeam. Headline NEWS: In…
Hello all, This was not a good week for some of the major players in the industry. Microsoft had portions, if not their entire network, go down several times, Oracle E-Business suite came under attack, SonicWall’s recent breach got worse,…
Hello all, The unofficial end of summer is here – Labor Day – observed by the United States and Canada, and nothing is different in the world of cyber security. Evil people are still perpetrating their vile crimes, earning themselves…
Hello all, Most of last week was quiet with a steady rumble of Microsoft sourced phishing emails growing in popularity, and then toward the latter part of the week Arctic Wolf and Huntress warned about a concerning increase in successful…
Hello all, Last week I warned about a new zero-day in Microsoft SharePoint on-premises that had just become public knowledge. It escalated quickly, not necessarily with threat actor activity, but with news articles and cyber professionals everywhere urging action. With…
Hello all, Surprisingly, it was a quiet week as far as major vulnerabilities and reveals are concerned. I suspect that the juicy stuff is being held back so that it can be revealed at the RSA conference that starts on…