Security Bulletins

Subscribe to Security Bulletins feed
Updated: 2 hours 20 min ago

Drupal Releases Security Updates

Wed, 03/20/2019 - 14:51
Original release date: March 20, 2019

Drupal has released security updates to address a vulnerability in Drupal Core. A remote attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Drupal Security Adisory and apply the necessary updates.

 

Read more

Categories: Tech

Cisco Releases Security Advisories for Multiple Products

Wed, 03/20/2019 - 13:50
Original release date: March 20, 2019
Cisco has released several security advisories to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

Read more

Categories: Tech

Mozilla Releases Security Updates for Firefox

Tue, 03/19/2019 - 11:32
Original release date: March 19, 2019

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Read more

Categories: Tech

Microsoft Ending Support for Windows 7

Tue, 03/19/2019 - 11:14
Original release date: March 19, 2019

All software products have a life-cycle. After January 14, 2020, Microsoft will no longer provide security updates or support for PCs running the Windows 7 operating system. After this date, this product will no longer receive free:

•         Technical support for any issues
•         Software updates
•         Security updates or fixes

Read more

Categories: Tech

Now Available: Recording of Chinese Malicious Cyber Activity Briefing

Tue, 03/19/2019 - 10:03
Original release date: March 19, 2019

The Cybersecurity and Infrastructure Security Agency (CISA) has posted the February 14, 2019, Awareness Briefing on Chinese Malicious Cyber Activity. This webinar provides background and mitigation techniques on Chinese malicious cyber activity targeting managed service providers (MSPs).   

Read more

Categories: Tech

SB19-077: Vulnerability Summary for the Week of March 11, 2019

Mon, 03/18/2019 - 06:07
Original release date: March 18, 2019

Read more

Categories: Tech

New Zealand-Related Scams and Malware Campaigns

Fri, 03/15/2019 - 15:18
Original release date: March 15, 2019

Read more

Categories: Tech

Intel Releases Security Advisories on Multiple Products

Fri, 03/15/2019 - 09:28
Original release date: March 15, 2019

Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Read more

Categories: Tech

VMware Releases Security Updates for Workstation and Horizon

Fri, 03/15/2019 - 08:38
Original release date: March 15, 2019

VMware has released security updates to address vulnerabilities affecting Workstation 14 and 15, and Horizon 6 and 7. An attacker could exploit some of these vulnerabilities to take control of an affected system.  

Read more

Categories: Tech

Microsoft Releases Security Update for Azure Linux Guest Agent

Thu, 03/14/2019 - 18:42
Original release date: March 14, 2019

Microsoft has released an update to address a vulnerability in Azure Linux Guest Agent. An attacker could exploit this vulnerability to obtain access to sensitive information.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Microsoft Security Advisory and apply the necessary update.

Read more

Categories: Tech

MS-ISAC Releases Security Primer on TrickBot Malware

Thu, 03/14/2019 - 13:33
Original release date: March 14, 2019

The Multi-State Information Sharing and Analysis Center (MS-ISAC) has released a security primer on TrickBot malware. TrickBot is a modular banking Trojan that targets users’ financial information and acts as a dropper for other malware. An attacker can leverage TrickBot’s modules to steal banking information, conduct system and network reconnaissance, harvest credentials, and achieve network propagation.

Read more

Categories: Tech

WordPress Releases Security Update

Thu, 03/14/2019 - 07:15
Original release date: March 14, 2019

WordPress 5.1 and prior versions are affected by a vulnerability. An attacker could exploit this vulnerability to take control of an affected website.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the WordPress Security and Maintenance Release and upgrade to WordPress 5.1.1.

Read more

Categories: Tech

Cisco Releases Security Updates

Wed, 03/13/2019 - 13:39
Original release date: March 13, 2019

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit one of these vulnerabilities to cause a denial-of-service condition.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Advisories and apply the necessary updates:

Read more

Categories: Tech

Google Releases Security Updates for Chrome

Wed, 03/13/2019 - 13:28
Original release date: March 13, 2019

Google has released Chrome version 73.0.3683.75 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system. 

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary updates.

Read more

Categories: Tech

Microsoft Releases March 2019 Security Updates

Tue, 03/12/2019 - 12:02
Original release date: March 12, 2019

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

Read more

Categories: Tech

Adobe Releases Security Updates

Tue, 03/12/2019 - 07:00
Original release date: March 12, 2019

Adobe has released security updates to address vulnerabilities in Adobe Photoshop CC and Adobe Digital Editions. An attacker could exploit these vulnerabilities to take control of an affected system.

Read more

Categories: Tech

SB19-070: Vulnerability Summary for the Week of March 4, 2019

Mon, 03/11/2019 - 01:14
Original release date: March 11, 2019

Read more

Categories: Tech

Google Releases Security Updates for Chrome

Thu, 03/07/2019 - 10:49
Original release date: March 07, 2019

Google has released Chrome version 72.0.3626.121 for Windows, Mac, and Linux. This version addresses a vulnerability that a remote attacker could exploit to take control of an affected system. This vulnerability was detected in exploits in the wild.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Google Chrome blog entry and apply the necessary updates.

Read more

Categories: Tech

ICSJWG Spring Meeting and Call for Abstracts (Deadline Extended)

Thu, 03/07/2019 - 10:05
Original release date: March 07, 2019

The Industrial Control Systems Joint Working Group (ICSJWG)—a collaborative and coordinating body operating under the Critical Infrastructure Partnership Advisory Council (CIPAC) framework—will hold the 2019 ICSJWG Spring Meeting in Kansas City, MO, April 23–25, 2019. The Spring Meeting kicks off the 10th anniversary of ICSJWG biannual meetings.

ICSJWG has extended its deadline for abstracts to be presented at the meeting to 5 p.m. ET, March 15, 2019.

Read more

Categories: Tech

Cisco Releases Security Updates

Wed, 03/06/2019 - 14:01
Original release date: March 06, 2019

Cisco has released multiple security updates to address vulnerabilities in various Cisco products. An attacker could exploit some of those vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Cisco Security Advisories and apply the necessary updates.

Read more

Categories: Tech

Pages

© 2000-2019 Systems By....