Patch Tuesday: Zero-day Vulnerability Fixes

Yes it was Patch Tuesday July9th (yesterday). This means Krebsonsecurity had a post describing all the action: The first Microsoft zero-day this month is CVE-2024-38080, a bug in the Windows Hyper-V component that affects Windows 11 and Windows Server 2022 systems. CVE-2024-38080 allows an attacker to increase their account privileges on a Windows machine. Although … Read more

What Are Some New Phishing Attacks?

Every day and month in this new year (2024) the hackers of the criminal kind are working on new attacks to steal/take our resources and money. At SecureWorld yesterday there was a presentation by the secret service of some new phishing and other attacks, including a review of the Snowflake attacks. Although he did not … Read more

Who Are The Cyber Attackers?

  As in my book “Too Late You’re Hacked” Guidebook The hackers are in the areas of he world where cyber attacks are a part of national policy (China, Russia, Iran, and North Korea) CRINK if you like acronyms. Of course these attackers are not always government soldiers  (In China Unit 61398 performed the APT … Read more

You Moved Your Stuff to the “Cloud”, What Could Go Wrong?

ArsTechnica has the story: “Unprecedented” Google Cloud event wipes out customer account and its backups The $135 billion pension account UniSuper (in Australia) which has 647,000 members thought it was being brought ‘up-to-date’ by moving it’s IT systems to the Google Cloud. Unfortunately this interesting post by CEO of UniSuper and GoogleCloud Head  explains the … Read more