Hello all,The Red-N Weekly Cyber Security News newsletter is below the Notable Callouts as usual. Notable Callouts: In light of the advent of CatGPT, perhaps the best use of the internet truly is cat memes and videos. Viscount Zebulon Wamboldt…
Hello all, This past week has brought a tsunami of vulnerability fixes and patches. Many of these are for zero-days, so patch quickly! The Red-N Weekly Cyber Security News newsletter is below the Notable Callouts as usual. Notable Callouts: One…
ConnectWise patched a critical RCE vulnerability in Recover and R1Soft Server Backup Manager Google fixes seventh Chrome zero-day exploited in attacks this year Atlassian Jira Align, Version 10.107.4 Vulnerability Advisory Apple fixes new zero-day used in attacks against iPhones, iPads,…
Microsoft October 2022 Patch Tuesday fixes two zero-days, 1 used in attacks, 84 flaws, 13 of which are critical The October 2022 Exchange SUs do not contain fixes for the zero-day vulnerabilities reported on September 29, 2022 Windows 11 KB5018427…
Fortinet warns admins to patch critical auth bypass bug immediately Updated information: Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server Steam Gaming Phish Showcases Browser-in-Browser Threat ‘IT security issue’ impacts multiple hospitals across several states Microsoft investigates Windows…
Microsoft September 2022 Patch Tuesday fixes zero-day used in attacks, 63 flaws Windows 10 Update KB5017308 causes issues when creating/copying files via GPO Microsoft issues critical security updates as PCs attacked through zero-day flaw Microsoft issues patch for serious security…
QNAP patches zero-day used in new Deadbolt ransomware attacks Interpol and local Police dismantled an Asian Sextortion ring Zyxel has released patches for NAS products affected by a format string vulnerability HP fixes severe Privilege Escalation bug in pre-installed HP…
64% of Businesses Suspect They’ve Been Targeted or Impacted by Nation-State Attacks US House appropriators want to fund more than $15 billion for cybersecurity Microsoft adds virtual core licensing to Windows Server – major cloud hosts excluded New licensing benefits…
Microsoft shares workarounds for broken audio on Windows 10 after KB5015878 Cookie theft threat: When multi-factor authentication (MFA) is not enough CISA is warning of high-severity PAN-OS DDoS flaw used in attacks LastPass source code, blueprints stolen by intruder –…
Microsoft’s Secure Boot fix sends some PCs into BitLocker Recovery New macOS 12.5.1 and iOS 15.6.1 updates patch “actively exploited” vulnerabilities Microsoft will turn off TLS 1.0 and 1.1 in Internet Explorer and EdgeHTML on September 13 Exploit out for…
August 2022 Patch Tuesday | Microsoft Releases 121 Vulnerabilities with 17 Critical Microsoft August Patch Tuesday fixes critical Secure Boot GRUB vulnerability Microsoft blocks UEFI bootloaders enabling Windows Secure Boot bypass Microsoft warns about Windows update fails, UEFI update might…
Qakbot Resurfaces With New Playbook Beware New Windows Vulnerability With Remote Search Window Access Critical Filewave MDM Vulnerabilities Allow Attackers Full Mobile Device Control Critical security vulnerability in Grails could lead to remote code execution Update Google Chrome now! New…