News

Security News, Updates and Vulnerabilities, posted here from around the web. Including US-CERT Cyber Security Bulletin & Microsoft Technet

 

Drupal Releases Security Updates

Original release date: January 16, 2019 Drupal has released security updates addressing vulnerabilities in Drupal 7.x, 8.5.x, and 8.6.x. A remote attacker could exploit these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Drupal Releases Security Updates

Oracle Releases January 2019 Security Bulletin

Original release date: January 15, 2019 Oracle has released its Critical Patch Update for January 2019 to address 284 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Oracle Releases January 2019 Security Bulletin

1 year left for Windows 7, Server 2008, Exchange/Office 2010

Time is running out for support for Windows 7, Server 2008, Exchange 2010 and Office 2010 with support due to be stopped in 2020.

Posted in Blog, Cyber, Cyber Essentials, Information Assurance, Information Security, Microsoft, News, Security, Update | Comments Off on 1 year left for Windows 7, Server 2008, Exchange/Office 2010

DNS Infrastructure Hijacking Campaign

Original release date: January 10, 2019 The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS) infrastructure hijacking campaign. Using compromised credentials, an attacker can modify the location to which an organization’s domain name resources resolves. This enables the […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on DNS Infrastructure Hijacking Campaign

Juniper Networks Releases Multiple Security Updates

Original release date: January 09, 2019 Juniper Networks has released multiple security updates to address vulnerabilities in various Juniper products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Juniper Networks Releases Multiple Security Updates

Cisco Releases Security Updates

Original release date: January 09, 2019 Cisco has released security updates to address vulnerabilities in Cisco AsyncOS Software for Cisco Email Security Appliance. A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition.   The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Cisco Releases Security Updates

Microsoft Releases January 2019 Security Updates

Original release date: January 08, 2019 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Microsoft Releases January 2019 Security Updates

Adobe Releases Security Updates

Original release date: January 08, 2019 Adobe has released security updates to address vulnerabilities in Adobe Connect and Adobe Digital Editions. An attacker could exploit one of these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on Adobe Releases Security Updates

Cyber security for major events

Major Events are increasingly reliant on digital systems and technology. Cyber attacks that affect the confidentiality, integrity or availability of these systems can have a disruptive impact, resulting in financial and reputational damage. This guide outlines how to incorporate Cyber Risk Management processes into Major Event planning. It is aimed at organisations running large scale sporting events, but the […]

Posted in Cyber, Guidance, NCSC, Security | Tagged , , , , , | Comments Off on Cyber security for major events

CERT/CC Reports Critical Vulnerabilities in Microsoft Windows, Server

Original release date: January 04, 2019 The CERT Coordination Center (CERT/CC) has released information on vulnerabilities affecting versions of Microsoft Windows and Windows Server. A remote attacker could exploit these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), […]

Posted in News, Security, Updates, Vulnerability | Tagged , | Comments Off on CERT/CC Reports Critical Vulnerabilities in Microsoft Windows, Server