Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird
CISA encourages users and administrators to review Mozilla Security Advisories for Firefox 85, Firefox ESR 78.7, and Thunderbird 78.7 and apply the necessary updates.
https://t.co/ufHwBnjfLP
Apple Patches Three iOS Zero-Day Vulnerabilities
New iOS 14.4 update available for iPhones and iPads.
#SecurityAwareness#CyberSecurity
https://t.co/z7QJP55sr3
Remote Attackers Can Now Reach Protected Network Devices via NAT Slipstreaming
A new version of NAT slipstreaming allows cybercriminals an easy path to devices that aren't connected to the internet.
#SecurityAwareness#CyberSecurity
https://t.co/4wlvenKeIm
Microsoft Releases New Info on SolarWinds Attack Chain
Threat actors went to elaborate lengths to maintain operational security around second-stage payload activation, company says.
#SecurityAwareness#CyberSecurity
https://t.co/ipxyb7qJo2
7 Steps to Secure a WordPress Site
Many companies operate under the assumption that their WordPress sites are secure -- and that couldn't be anything further from the truth.
#SecurityAwareness#CyberSecurity
https://t.co/6S8JJXIkK4
Amazon Kindle RCE Attack Starts with an Email
The "KindleDrip" attack would have allowed attackers to siphon money from unsuspecting victims.
#SecurityAwareness#CyberSecurity
https://t.co/Q2RKpbD9rD
Microsoft Edge gets a password generator, leaked credentials monitor
Microsoft is rolling out a built-in password generator and a leaked credentials monitoring feature on Windows and macOS systems running the latest Microsoft Edge version.
https://t.co/EuTF6Y2hJw
A look into the pricing of stolen identities for sale on dark web
Researchers analyzed listings across 40+ dark web marketplaces gathering data on how much stolen identities, credit cards and hacked PayPal accounts are worth to cybercriminals.
https://t.co/s4RLyun8lc
These Microsoft tools help you reduce, remove or lock down admin access to improve security
The SolarWinds compromise means you can no longer put off privileged account management.
#SecurityAwareness#CyberSecurity
https://t.co/4zUdHodGWX
How to check if someone else accessed your Google account
Review your recent Gmail access, browser sign-in history, and Google account activity to make sure no one other than you has used your account.
#SecurityAwareness#CyberSecurity
https://t.co/jeE4FBtfC1
Critical Cisco SD-WAN Bugs Allow RCE Attacks
Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.
#SecurityAwareness#CyberSecurity
https://t.co/m6rMtDAQ7P
Cloud Attacks Are Bypassing MFA, Feds Warn
CISA has issued an alert warning that cloud services at U.S. organizations are being actively and successfully targeted.
#SecurityAwareness#CyberSecurity
https://t.co/NcquoKHhNy
Microsoft Implements Windows Zerologon Flaw Enforcement Mode
Starting Feb. 9, Microsoft will enable Domain Controller enforcement mode by default to address CVE-2020-1472.
#SecurityAwareness#CyberSecurity
https://t.co/Iyjjk4ol8j
Apache Releases Security Advisory for Tomcat
The Apache Software Foundation has released a security advisory to address a vulnerability affecting multiple versions of Apache Tomcat.
https://t.co/tJr9J9fGg0
Microsoft asks organizations to update systems to address Zerologon vulnerability
Microsoft has addressed companies who have not yet updated their systems to address the critical Zerologon flaw.
https://t.co/xsZBKOvy5B