Firefox 81 Release Kills High-Severity Code-Execution Bugs

Mozilla has fixed three high-severity flaws with the release of Firefox 81 and Firefox ESR 78.3. Continue reading Firefox 81 Release Kills High-Severity Code-Execution Bugs

Only 44% of healthcare providers conform to protocols outlined by the NIST CSF

Only 44% of healthcare providers, including hospital and health systems, conformed to protocols outlined by the NIST CSF – with scores in some cases trending backwards since 2017, CynergisTek reveals. Healthcare providers and NIST CSF Analysts ex… Continue reading Only 44% of healthcare providers conform to protocols outlined by the NIST CSF

CISA orders federal agencies to implement Zerologon fix by Monday

If you had any doubts about the criticality of the Zerologon vulnerability (CVE-2020-1472) affecting Windows Server, here is a confirmation: the US Cybersecurity and Infrastructure Security Agency (CISA) has issued on Friday an emergency directive inst… Continue reading CISA orders federal agencies to implement Zerologon fix by Monday

What’s causing uncertainty about election security?

Confidence levels in securing the election are low, and declining, according to an ISACA survey of more than 3,000 IT governance, risk, security and audit professionals in the US. While federal, state and local governments continue to harden election i… Continue reading What’s causing uncertainty about election security?

Best Practices / Standards / Tools for an OEM Vulnerability CERT? [closed]

For OEM selling high volume global connected consumer electronics products, I am reviewing best practices for setting up a dedicated corporate network security community emergency response team (CERT) for identifying security vulnerabiliti… Continue reading Best Practices / Standards / Tools for an OEM Vulnerability CERT? [closed]