Yes there are rumblings of the ZeroLogon issue at Threatpost articles: Microsoft Zerologon Flaw Under Attack By Iranian Nation-State Actors. Dark Reading article: One year later… a look back at Zerologon! For August 2021 patch Tuesday (August 10th) 120 vulnerabilities are fixed including 2 zero -days and one elevation-of-privilege flaw in Netlogon remote protocol. … Read more
In my opinion the most difficult ransomware prevention actions would be the act of deciding to spend money on something that may not happen. (part of the dynamic of “Psychology of Security” Before we go into the details of the above sentence – lets review the attackers: What should be obvious by now when one … Read more
5 reasons to Fix Cyber Stay productive – keep running your business Making sure your devices are not used to attack others (part of good neighbor policy) Compliant with regulations (keep government in check) Emergency device failure would be taken care of Stay out of news The idea is to give 5 positive reasons … Read more
FireEye Blogpost last week about phishing emails using the iCEDID phishing infection has an interesting image explaining this concept: This is a sophisticated phishing setup and thus it behooves us to review this carefully. If you notice the initial phishing email when opened has several embedded items as well as a password structure so that … Read more
Threatpost has the story Microsoft pulls bad Windows Update After Patch Tuesday headaches . Patch Tuesday this month (February) was the second Tuesday of the month so it was the Feb 9th. Today the 17th is a week later and apparently this story is from yesterday(16th). There were some problems with a service pack update. … Read more