-
News for September 7, 2022
Zyxel Firmware Updateby Artie Kaye Good news regarding a flaw in Zyxel’s network attached storage devices, the vulnerability has been patched. The affected devices are: NAS326NAS540NAS542 If you are running, or believe you might be running these affected devices, contact your support team to get them fixed. The updates can be found on the Zyxel…
-
News for September 5, 2022
Cross Platform Ransomware Threat BianLianby Artie Kaye This malware targets a Microsoft Exchange Server Proxy vulnerability chain and SonicWall VPN devices to leverage access. The hackers can spend upwards of 6 weeks searching through systems before initiating encryption. It is capable of starting servers in safe mode before beginning the encryption. To be extra thorough,…
-
News for September 2, 2022
Microsoft Finally Ending Basic Authby Artie Kaye The function of basic auth has been to allow authentication data to be sent across the internet in plain text. This is a security risk, and the function was announced to be removed in 2019. Starting in October it will be disabled partly, allowing those who still use…
-
News for August 31, 2022
Malware Hidden in Webb Telescope Imagesby Artie Kaye Golang is a programming language which is being used by hackers to develop malware. Part of the reason is because it functions on Windows, Mac, and Linux. Another part is that it can be difficult to analyze, which can slow down response time for remedies. A malware…
-
News for August 29, 2022
10 Items Added to CISA Actively Exploited Listby Artie Kaye The US Cybersecurity and Infrastructure Security Agency had added 10 items to their list of must address exploits. The date to fix by is September 15, 2022. As these are actively being used by attackers in the wild it is recommended to resolve the issues. …