patching – WindowsTechs.com

Roger Grimes on Prioritizing Cybersecurity Advice

Posted on October 31, 2024 by Bruce Schneier

Part of the problem is that we are constantly handed lists…list of required controls…list of things we are being asked to fix or improve…lists of new projects…lists of threats, and so on, that are not ranked for risks. For example, we are often given a cybersecurity guideline (e.g., PCI-DSS, HIPAA, SOX, NIST, etc.) with hundreds of recommendations. They are all great recommendations, which if followed, will reduce risk in your environment.

What they do not tell you is which of the recommended things will have the most impact on best reducing risk in your environment. They do not tell you that one, two or three of these things…among the hundreds that have been given to you, will reduce more risk than all the others…

Continue reading Roger Grimes on Prioritizing Cybersecurity Advice→

Defenders must adapt to shrinking exploitation timelines

Posted on October 16, 2024 by Zeljka Zorz

A new report from Mandiant reveals that the average time-to-exploit vulnerabilities before or after a patch is released has plunged to just five days in 2023, down from 32 days in 2021 in 2022. One reason for this is the fact that, in 2023, exploitatio… Continue reading Defenders must adapt to shrinking exploitation timelines→

Windows Server 2025 gets hotpatching option, without reboots

Posted on September 23, 2024 by Zeljka Zorz

Organizations that plan to upgrade to Windows Server 2025 once it becomes generally available will be able to implement some security updates by hotpatching running processes. What is hotpatching? “Hotpatching has been around for years in Windows… Continue reading Windows Server 2025 gets hotpatching option, without reboots→

Legacy Ivanti Cloud Service Appliance Being Exploited

Posted on September 16, 2024 by Bruce Schneier

CISA wants everyone—and government agencies in particular—to remove or upgrade an Ivanti Cloud Service Appliance (CSA) that is no longer being supported.
Welcome to the security nightmare that is the Internet of Things.
Continue reading Legacy Ivanti Cloud Service Appliance Being Exploited→

September 2024 Patch Tuesday forecast: Downgrade is the new exploit

Posted on September 6, 2024 by Help Net Security

I asked for a calm August 2024 Patch Tuesday in last month’s forecast article and that came to pass. The updates released were limited to the regular operating systems and all forms of Office applications. Six zero-day vulnerabilities were announced, w… Continue reading September 2024 Patch Tuesday forecast: Downgrade is the new exploit→

Hacking Wireless Bicycle Shifters

Posted on August 20, 2024 by Bruce Schneier

This is yet another insecure Internet-of-things story, this one about wireless gear shifters for bicycles. These gear shifters are used in big-money professional bicycle races like the Tour de France, which provides an incentive to actually implement t… Continue reading Hacking Wireless Bicycle Shifters→

New Windows IPv6 Zero-Click Vulnerability

Posted on August 16, 2024 by Bruce Schneier

The press is reporting a critical Windows vulnerability affecting IPv6.

As Microsoft explained in its Tuesday advisory, unauthenticated attackers can exploit the flaw remotely in low-complexity attacks by repeatedly sending IPv6 packets that include specially crafted packets.

Microsoft also shared its exploitability assessment for this critical vulnerability, tagging it with an “exploitation more likely” label, which means that threat actors could create exploit code to “consistently exploit the flaw in attacks.”

Details are being withheld at the moment. Microsoft strongly recommends …

Continue reading New Windows IPv6 Zero-Click Vulnerability→

OpenWrt dominates, but vulnerabilities persist in OT/IoT router firmware

Posted on August 7, 2024 by Help Net Security

Forescout has published a new report examining the current state of the software supply chain in OT/IoT routers. The study uncovered that OT and IoT cellular routers and those used in small offices and homes contain outdated software components associa… Continue reading OpenWrt dominates, but vulnerabilities persist in OT/IoT router firmware→

Solving the systemic problem of recurring vulnerabilities

Posted on June 14, 2024 by Help Net Security

In this Help Net Security video, Dr. Pedram Hayati, CEO at SecDim, and Fil Filiposki, founder of AttackForge, discuss how the two companies have formed a strategic collaboration to tackle the major challenge of resurfacing vulnerabilities. By integrati… Continue reading Solving the systemic problem of recurring vulnerabilities→

Cybersecurity teams gear up for tougher challenges in 2024

Posted on May 28, 2024 by Help Net Security

In this Help Net Security video, Tom Gorup, VP of Security Services at Edgio, discusses the continually changing threat landscape. It is riddled with vulnerabilities that are frequently exploited and only intensify as geopolitics and state-sponsored ac… Continue reading Cybersecurity teams gear up for tougher challenges in 2024→