Vendors have definitely delivered an April shower of vulnerabilities to address this month!
Microsoft has released a total of 67 CVE-listed vulnerabilities this month, covering the usual suspects: Edge, OS, Internet Explorer and Office. Of these 67 CVEs, 24 are listed as Critical, 42 are rated Important, and one is listed as Moderate in severity.
Insider threats. Cyberattacks. Data breaches. With protection better than cure, our spotlight on data security continues…
Last month we explored the cool data loss prevention features of the Varonis platform. With the appropriate measures in place to control and monitor your data, the next step is to make sure you are immediately switched on the moment anyone tries to get their hands on it.
If you’re a frequent reader of our Patch Tuesday blogs you will know that at Options we patch by default for 100% of our desktop estate. Given the volume of vulnerabilities highlighted each month, maintaining this patch cadence could be a mammoth task. On our platform there are multiple operating systems and tonnes of third party applications.
It’s been nearly two months since the Meltdown and Spectre drama began and Microsoft is still churning out patches to protect against these vulnerabilities (luckily there are no known exploits).
In total, Microsoft has released a whopping 75 security patches for March covering Internet Explorer, Edge, ChakraCore, Microsoft Windows, Microsoft Office, and ASP.NET Core. 14 are listed as critical and 61 are rated important in severity.
In cybersecurity circles, 2017 will go down in history as the year that Fortune 500 CEOs started to get fired after data breaches, whereas in the previous era a junior IT manager would be sacrificed. It seemed that everyone got hacked, ranging from the SEC or Parliament in the UK, Fortune 500 companies, to the law firms that manage off-shore wealth for the elite.
If you aren’t using Splunk or haven’t heard of it, we like to think of it as the Google of log files. A #BigData cruncher that allows you to search through the logs or exports of thousands of systems from one interface!
We first introduced Splunk to automate complex queries and reports across our multiple data sources. It was our Read more
That is, if you are running Windows 10 version 1511 which Microsoft declared end of life (EOL) after October 10, 2017.
Maybe you overlooked the deadline amidst the 62 Patch Tuesday updates Microsoft issued that very same day. Perhaps the storm of ensuing cybersecurity vulnerabilities (KRACK, Bad Rabbit) pushed it further down the to-do list.
With stability restored from last month’s Meltdown and Spectre patches, we’ve resumed 100% patching just in time for some big hitters this month.
Should you be worried? Given attacks are already in the wild, remediation is definitely a top priority for your network admin team.
This is what you need to know.
What is it?
Cisco has issued an update to its January 29 security advisory that alerted customers to the highest rated critical vulnerability on its Adaptive Security Appliance (ASA) firewall platform’s Web VPN services.
About 18 months ago, I was doing what 99% of trainee accountants do – learning my craft in the traditional accounting consultancy environment. I quickly realized that I was looking for something a little less conventional to advance my career. I found it at Options.