April 5, 2025
(Click here to see a video version of this week’s introduction) Hello all, Apache had a bad week with two vulnerabilities, the first in Parquet, and the second in Tomcat. Ivanti has another zero-day, Apple updated a lot of items,…
Tag Palo Alto
February 22, 2025
(For a video version of the introduction below, go to my LinkedIn post.) Hello all, This was somewhat of an interstitial week with less headline defects and vulnerabilities, but it was balanced by plenty of other news items. Some of…
December 28, 2024
Hello all, The end is near! No, not of the world, but of the year. And what a year it has been! There are over half a dozen links that herald and decry the past year in the cyberverse as…
December 7, 2024
Hello all, It has been a busy week with security related news. The Chinese hack into telecommunication providers continues to dominate, with government agencies urging everyone to use encrypted messaging and communication apps and processes due to the depth and…
November 23, 2024
Hello all, I was rather pleased to notice that there are at least twelve links in this week’s edition that talk about wins by the defenders, and even some by our AI friends. Some of the larger news items to…
November 9, 2024
Hello all, This past week has some nice wins from the cyber-defenders; 41 arrests of evil people, with more coming, over 22,000 malicious servers taken offline, the person responsible for the Snowflake breach behind bars, and scores of Nigerian scammers…
October 12, 2024
Hello all, Hurricane Milton moved ashore with a swath of renewed devastation across a large portion of Florida’s West Coast this past week, further stressing and testing Disaster Recovery and Business Continuity plans still attempting to recover from Hurricane Helene.…
September 14, 2024
Hello all, Another Patch the Defects, Flaws, Vulnerabilities, and Bugs Day is behind us. There were a lot of issues revealed, with fixes for most of them proffered. Some that I consider to be noteworthy are listed below. As usual,…
July 13, 2024
Hello all, As expected, Patch Tuesday’s offerings were prolific. Adobe, Fortinet, a large number of Industrial Control System (ICS / OT) vendors, Mozilla, Microsoft, Netgear, Palo Alto, VMware, and more released updates and patches this week to address flaws and…
May 4, 2024
Hello all, It was a lighter news cycle this week, but there was still a good deal to read and digest. Microsoft, after taking a severe bruising from the Cyber Safety Review Board, has pledged to make Security their number…
April 20, 2024
Hello all, This week was blissfully quiet in comparison to last week’s flood of items that screamed for attention. Note the in comparison… there are still plenty of vulnerabilities, reveals, patches, and interesting news items, and if your enterprise is…
April 13, 2024
Hello all, Patch Palooza was how the program director dubbed the web show I participated in on Friday where we discussed the flood of patches this week brought. Microsoft unleashed patches to plug 150 vulnerabilities, two of which are zero-days.…