A new Vulnerability which was a “Zero Day” vulnerability in a Windows Tool called MSDT (Microsoft Support Diagnostic Tool) according to Technewsworld.com story You can see the tool here in the following image: (after typing msdt in the Run or task search bar for Windows`10 operating system.) As I have discussed before – in … Read more
chrome has a new security update according to CISA(Cybersecurity and Infrastructure Security Agency) post: Google has released Chrome version 103.0.5060.114 for Windows. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. Official Google update: https://chromereleases.googleblog.com/2022/07/stable-channel-update-for-desktop.html This update includes 4 security fixes. Below, we highlight fixes that were contributed … Read more
Happy 4th of July !!! Remember to do your full backups at this time . If you cant do it on a regular basis (weekly or monthly) at least do some 2z a year. In July and December for example. The only way is to have backups, update your systems, anti-virus software. and … Read more
What if you have software with a vulnerability that will not be patched? What does this mean? RCE means Remote Code Execution which means the attacker does not have to be on the system to exploit it (this is the most dangerous attack). If you are running Horde webmail to check your email – … Read more
Remember the Exchange server hack from a year ago (post from 3/16/21)? “Exchange Server Attacks Just Beginning?” “Attacks exploiting the flaws were first spotted in January. They initially were limited and targeted, seemingly for espionage: the adversaries primarily targeted specific email accounts. Microsoft attributed the activity to a group it calls Hafnium, believed to operate … Read more
