News


Security News, Updates and Vulnerabilities, posted here from around the web. Including US-CERT Cyber Security Bulletin & Microsoft Technet

 

Cisco Releases Security Updates

Original release date: August 15, 2018 Cisco has released updates to address vulnerabilities affecting Cisco products. A remote attacker could exploit these vulnerabilities to cause a denial-of-service situation. NCCIC encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates: Web Security Appliance Web Proxy Memory Exhaustion Denial-of-Service Vulnerability cisco-sa-20180815-wsa-dos […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Cisco Releases Security Updates

FBI Releases Guidance on Defending Against Travel Scams

Original release date: August 14, 2018 The Federal Bureau of Investigation (FBI) has released an article on building a digital defense against travel scams. FBI explains how scammers trick consumers with “free” vacation ploys. These offers may be fake or involve hidden fees. Legitimate companies will not ask prize winners to pay to claim their […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on FBI Releases Guidance on Defending Against Travel Scams

VMware Releases Security Updates

Original release date: August 14, 2018 VMware has released security updates to address vulnerabilities in vSphere, Workstation, Fusion, and Virtual Appliances. An attacker could exploit these vulnerabilities to obtain sensitive information. NCCIC encourages users and administrators to review VMware Security Advisories VMSA-2018-0020 and VMSA-2018-0021 and apply the necessary updates. This product is provided subject to […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on VMware Releases Security Updates

Samba Releases Security Updates

Original release date: August 14, 2018 The Samba Team has released security updates to address several vulnerabilities in Samba. An attacker could exploit one of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Samba Security Announcements for CVE-2018-10858, CVE-2018-10918, CVE-2018-10919, CVE-2018-1139, and CVE-2018-1140 and apply the […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Samba Releases Security Updates

Adobe Releases Security Updates

Original release date: August 14, 2018 Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader, Adobe Experience Manager, Adobe Flash Player, and Adobe Creative Cloud Desktop Application. An attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review Adobe Security […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Adobe Releases Security Updates

Microsoft Releases August 2018 Security Updates

Original release date: August 14, 2018 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review Microsoft’s August 2018 Security Update Summary and Deployment Information and apply the necessary updates. This […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Microsoft Releases August 2018 Security Updates

Intel Side-Channel Vulnerability

Original release date: August 14, 2018 Intel has released recommendations to address a side-channel vulnerability affecting multiple Intel microprocessors. An attacker could exploit this vulnerability to obtain sensitive information.   NCCIC encourages users and administrators to review Intel’s Security Advisory INTEL-SA-00161, apply the necessary mitigations, and refer to software vendors for appropriate patches, when available. […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Intel Side-Channel Vulnerability

Oracle Releases Security Alert

Original release date: August 13, 2018 Oracle has released a security alert to address a vulnerability in multiple versions of Oracle Database. A remote attacker could exploit this vulnerability to take control of an affected system. NCCIC encourages users and administrators to review the Oracle Security Alert and the Multi-State Information Sharing & Analysis Center […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Oracle Releases Security Alert

Back-to-School Cyber Safety

Original release date: August 10, 2018 As summer break ends, many students will return to school with mobile devices, such as smart phones, tablets, and laptops. Although these devices can help students with their schoolwork and stay in touch with family and friends, there are risks associated with using them. However, there are simple steps […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Back-to-School Cyber Safety

North Korean Malicious Cyber Activity

Original release date: August 09, 2018 The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have identified a Trojan malware variant—referred to as KEYMARBLE—used by the North Korean government. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA. US-CERT encourages users and administrators to […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on North Korean Malicious Cyber Activity