Yes it was Patch Tuesday July9th (yesterday). This means Krebsonsecurity had a post describing all the action: The first Microsoft zero-day this month is CVE-2024-38080, a bug in the Windows Hyper-V component that affects Windows 11 and Windows Server 2022 systems. CVE-2024-38080 allows an attacker to increase their account privileges on a Windows machine. Although … Read more
Happy 4th of July: I always do a full backup on this day – so I have at least a few backups at July 4th and Christmas. I may backup other days, but make sure I do one today!!! Perform some stuff that you normally would not on this celebration, as well I am sure … Read more
As Hackernews has in its posts: New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems RCE = Remote Code Execution , i.e. the hacker does not need an account on the system to get on the system. This happens to be an old vulnerability (as per AI response): The OpenSSH remote code … Read more
NIST (National Institute of Standards & Technology) has come up with an AI Framework – still a work in progress, but it is coming into shape with this 1.0 version. There are many aspects to discuss, but the most important are… The Core of the framework: “A Culture of Risk Management is cultivated and … Read more
What does GenAi and Cybersecurity have in common? SCMagazine has the story: Gartner Security Summit: “3 takeaways” “Generative AI (GenAI) has emerged as a game-changer in the cybersecurity industry, offering both opportunities and risks. Jeremy D’Hoinne, a research vice president for security operations and infrastructure protection at Gartner, addressed this topic in his presentation the … Read more