-
News for September 2, 2022
Microsoft Finally Ending Basic Authby Artie Kaye The function of basic auth has been to allow authentication data to be sent across the internet in plain text. This is a security risk, and the function was announced to be removed in 2019. Starting in October it will be disabled partly, allowing those who still use…
-
News for August 31, 2022
Malware Hidden in Webb Telescope Imagesby Artie Kaye Golang is a programming language which is being used by hackers to develop malware. Part of the reason is because it functions on Windows, Mac, and Linux. Another part is that it can be difficult to analyze, which can slow down response time for remedies. A malware…
-
News for August 29, 2022
10 Items Added to CISA Actively Exploited Listby Artie Kaye The US Cybersecurity and Infrastructure Security Agency had added 10 items to their list of must address exploits. The date to fix by is September 15, 2022. As these are actively being used by attackers in the wild it is recommended to resolve the issues. …
-
News for August 26, 2022
Carbon Black Causing Blue Screen of Deathby Artie Kaye Some users of Carbon Black by VMware have been facing difficulties booting their systems after a recent update. The problem arises from updated security rulesets, which prevent certain devices from authenticating properly on boot. This presents as continuous BSoD’s some with the error code of PFN_LIST_CORRUPT. …
-
News for August 24, 2022
Palo Alto Networks Firewall DoS Bug Exploitedby Artie Kaye Caused by a URL filtering policy misconfiguration, PAN firewalls could be used to act as a vector for RDoS attacks. Reflected Denial of Service attacks take advantage of a third party to stage the attack from, bouncing the attacks off of a service or in this…