Author: DEFENDEDGE
-
Cisco Releases Security Updates for Cisco Enterprise NFVIS
Original release date: September 2, 2021 Cisco has released security updates to address a critical vulnerability affecting Cisco Enterprise Network Function Virtualization Infrastructure Software (NFVIS) Release 4.5.1. A remote attacker could exploit this vulnerability to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA encourages… Read more
-
Google Play Sign-Ins Allow Covert Location-Tracking
A design flaw involving Google Timeline could allow someone to track another device without installing a stalkerware app. Read more
-
Cisco Patches Critical Authentication Bug With Public Exploit
There’s proof-of-concept code out for the near-maximum critical – rated at 9.8 – authentication bypass bug, but Cisco hasn’t seen any malicious exploit yet. Read more
-
WhatsApp Photo Filter Bug Allows Sensitive Info to Be Lifted
Users should be careful whose pics they view and should, of course, update their apps. Read more
-
Comcast RF Attack Leveraged Remotes for Surveillance
IoT vulnerabilities turn remote into listening device, researchers find, which impacted 18 million Xfinity customers. Read more
-
Gutenberg Template Library & Redux Framework Bugs Plague WordPress Sites
Two vulnerabilities in the site-building plugin could be useful tools in the hands of a skilled attacker, researchers warned. Read more
-
Proxyware Services Open Orgs to Abuse – Report
Services that let consumers resell their bandwidth for money are ripe for abuse, researchers warn. Read more
-
Fortress Home Security Open to Remote Disarmament
A pair of unpatched security vulnerabilities can allow unauthenticated cyberattackers to turn off window, door and motion-sensor monitoring. Read more
-
FBI-CISA Advisory on Ransomware Awareness for Holidays and Weekends
Original release date: August 31, 2021 Today, the Federal Bureau of Investigation (FBI) and CISA released a Joint Cybersecurity Advisory (CSA) to urge organizations to ensure they protect themselves against ransomware attacks during holidays and weekends—when offices are normally closed. Although FBI and CISA do not currently have any specific threat reporting indicating a cyberattack will… Read more
-
AA21-243A: Ransomware Awareness for Holidays and Weekends
Original release date: August 31, 2021 Summary Immediate Actions You Can Take Now to Protect Against Ransomware • Make an offline backup of your data. • Do not click on suspicious links. • If you use RDP, secure and monitor it. • Update your OS and software. • Use strong passwords. • Use multi-factor authentication.… Read more