Tag Zero-Day

December 17, 2022

Hello all, The Red-N Weekly Security newsletter is below the callouts below. Notable callouts this week include: Just like attempting to drive a car that has a hole in a tire is fraught with issues, running a computer system with…

December 3, 2022

Hello all, The Red-N Weekly Security newsletter is below the callouts below. Notable callouts this week include: Also in this week’s issue are several links about cyber insurance. Remember, the second rat gets the cheese. In security, you cannot rest…

November 26, 2022

Hello all,A few of the notable call-out’s from this week’s report (found below this introduction) are: Having up to date, monitored and effective internet security is sort of like owning a snow-blower in Buffalo NY. It doesn’t do much for…

November 12, 2022

A few of the notable call-out’s from this week’s report are: Research shows that criminals avoid homes that have CCTV and/or yappy dogs. Make sure that your network is being watched and has some yappy dogs running around in them.…

October 29, 2022

ConnectWise patched a critical RCE vulnerability in Recover and R1Soft Server Backup Manager Google fixes seventh Chrome zero-day exploited in attacks this year Atlassian Jira Align, Version 10.107.4 Vulnerability Advisory Apple fixes new zero-day used in attacks against iPhones, iPads,…

October 22, 2022

Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text (Text4Shell) Our new scanner for Text4Shell – Silent Signal Techblog – Scanner on Github Vulnerabilities in Cisco Identity Services Engine require your attention Heat left by users’…

October 15, 2022

Microsoft October 2022 Patch Tuesday fixes two zero-days, 1 used in attacks, 84 flaws, 13 of which are critical The October 2022 Exchange SUs do not contain fixes for the zero-day vulnerabilities reported on September 29, 2022 Windows 11 KB5018427…

October 8, 2022

Fortinet warns admins to patch critical auth bypass bug immediately Updated information: Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server Steam Gaming Phish Showcases Browser-in-Browser Threat ‘IT security issue’ impacts multiple hospitals across several states Microsoft investigates Windows…

September 30, 2022

Two Zero-Day Microsoft Exchange vulnerabilities without a patch are being exploited – mitigation steps published Microsoft Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server Critical Remote Hack Flaws Found in Dataprobe’s Power Distribution Units WhatsApp 0-Day Bug Let…