patching – Page 12 – WindowsTechs.com

Accellion Supply Chain Hack

Posted on March 23, 2021 by Bruce Schneier

A vulnerability in the Accellion file-transfer program is being used by criminal groups to hack networks worldwide.

There’s much in the article about when Accellion knew about the vulnerability, when it alerted its customers, and when it patched its software.

The governor of New Zealand’s central bank, Adrian Orr, says Accellion failed to warn it after first learning in mid-December that the nearly 20-year-old FTA application — using antiquated technology and set for retirement — had been breached.

Despite having a patch available on Dec. 20, Accellion did not notify the bank in time to prevent its appliance from being breached five days later, …

Continue reading Accellion Supply Chain Hack→

US racing to address Microsoft vulnerabilities, especially for small businesses

Posted on March 22, 2021 by Shannon Vavra

The number of entities in the U.S. that remain vulnerable to the recently announced Microsoft Exchange Server software flaws is dropping, according to a National Security Council spokesperson. Overall, the number of vulnerable systems systems fell 45% last week, the National Security Council (NSC) spokesperson said in a statement, and there are now fewer than 10,000 vulnerable systems in the U.S., compared to the more than 120,000 entities that were vulnerable when the software bugs were first uncovered. The key to that apparent decrease is the fact that entities are taking advantage of a new tool Microsoft released to the public last week in an attempt to protect protect smaller organizations against hackers seeking to exploit the Exchange Server flaws, according to the NSC spokesperson. Microsoft developed the tool, the Exchange On-Premises Mitigation tool — which works in an automated way, scanning for compromises and remediating issues — in coordination with […]

The post US racing to address Microsoft vulnerabilities, especially for small businesses appeared first on CyberScoop.

Continue reading US racing to address Microsoft vulnerabilities, especially for small businesses→

To Patch or Not to Patch in OT – That Is the Real Challenge

Posted on March 17, 2021 by Baksheesh Singh Ghuman

The objective of an organization when implementing cybersecurity controls is to eliminate risk, but this oftentimes involves settling for managing risk at an acceptable level. Each organization defines what that acceptable level is depending on several… Continue reading To Patch or Not to Patch in OT – That Is the Real Challenge→

More on the Chinese Zero-Day Microsoft Exchange Hack

Posted on March 10, 2021 by Bruce Schneier

Nick Weaver has an excellent post on the Microsoft Exchange hack:

The investigative journalist Brian Krebs has produced a handy timeline of events and a few things stand out from the chronology. The attacker was first detected by one group on Jan. 5 and another on Jan. 6, and Microsoft acknowledged the problem immediately. During this time the attacker appeared to be relatively subtle, exploiting particular targets (although we generally lack insight into who was targeted). Microsoft determined on Feb. 18 that it would patch these vulnerabilities on the March 9th “Patch Tuesday” release of fixes…

Continue reading More on the Chinese Zero-Day Microsoft Exchange Hack→

On Not Fixing Old Vulnerabilities

Posted on March 9, 2021 by Bruce Schneier

How is this even possible?

…26% of companies Positive Technologies tested were vulnerable to WannaCry, which was a threat years ago, and some even vulnerable to Heartbleed. “The most frequent vulnerabilities detected during automated assessment date back to 2013-2017, which indicates a lack of recent software updates,” the reported stated.

26%!? One in four networks?

Even if we assume that the report is self-serving to the company that wrote it, and that the statistic is not generally representative, this is still a disaster. The number should be 0%…

Continue reading On Not Fixing Old Vulnerabilities→

Four Microsoft Exchange Zero-Days Exploited by China

Posted on March 4, 2021 by Bruce Schneier

Microsoft has issued an emergency Microsoft Exchange patch to fix four zero-day vulnerabilities currently being exploited by China.
EDITED TO ADD (3/12): Exchange Online is not affected.
Continue reading Four Microsoft Exchange Zero-Days Exploited by China→

Cyber Security Roundup for March 2021

Posted on March 1, 2021 by SecurityExpert

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, February 2021.

Serious Linux Vulnerability
Last month a newly discovered critical vulnerability in ‘s… Continue reading Cyber Security Roundup for March 2021→

The Ransomware Group Tactics which Maximise their Profitability

Posted on February 26, 2021 by SecurityExpert

Article by Greg Foss, Senior Cyber Security Strategist, VMware Carbon Black

Wherever there is disruption, cybercriminals see opportunity. Alongside the devastating health and economic impacts of the global coronavirus pandemic, we have also seen a hu… Continue reading The Ransomware Group Tactics which Maximise their Profitability→

Twelve-Year-Old Vulnerability Found in Windows Defender

Posted on February 24, 2021 by Bruce Schneier

Researchers found, and Microsoft has patched, a vulnerability in Windows Defender that has been around for twelve years. There is no evidence that anyone has used the vulnerability during that time.

The flaw, discovered by researchers at the security firm SentinelOne, showed up in a driver that Windows Defender — renamed Microsoft Defender last year — uses to delete the invasive files and infrastructure that malware can create. When the driver removes a malicious file, it replaces it with a new, benign one as a sort of placeholder during remediation. But the researchers discovered that the system doesn’t specifically verify that new file. As a result, an attacker could insert strategic system links that direct the driver to overwrite the wrong file or even run malicious code…

Continue reading Twelve-Year-Old Vulnerability Found in Windows Defender→

Router Security

Posted on February 19, 2021 by Bruce Schneier

This report is six months old, and I don’t know anything about the organization that produced it, but it has some alarming data about router security.

Conclusion: Our analysis showed that Linux is the most used OS running on more than 90% of the devic… Continue reading Router Security→