Vulnerability & Threat Management

21 09, 2017

Microsoft Fixes .NET Zero–Day Exploited to Install Espionage Spyware

By | September 21st, 2017|Cybercrime, Patch Tuesday, Vulnerability & Threat Management|Comments Off on Microsoft Fixes .NET Zero–Day Exploited to Install Espionage Spyware on Microsoft Fixes .NET Zero–Day Exploited to Install Espionage Spyware

The .Net flaw is one of more than 80 vulnerabilities Microsoft fixed during September’s Patch Tuesday.
13 09, 2017

BlueBorne Threatens 5.3 Billion Devices

By | September 13th, 2017|Vulnerability & Threat Management|Comments Off on BlueBorne Threatens 5.3 Billion Devices on BlueBorne Threatens 5.3 Billion Devices

Eight zero–day vulnerabilities have been announced affecting Android, iOS, Windows and Linux devices
10 08, 2017

Next on Your Summer Reading List: Cisco’s Midyear Report

By | August 10th, 2017|Vulnerability & Threat Management|Comments Off on Next on Your Summer Reading List: Cisco’s Midyear Report on Next on Your Summer Reading List: Cisco’s Midyear Report

Cisco releases its Bible–length cybersecurity report. Aside from the stats, makes a Hail Mary to improve security (and management) through vendor consolidation.
4 08, 2017

CVEs Abound, But Not Enough to Secure the Enterprise

By | August 4th, 2017|Vulnerability & Threat Management|Comments Off on CVEs Abound, But Not Enough to Secure the Enterprise on CVEs Abound, But Not Enough to Secure the Enterprise

While MITRE improves catalog methods, it still falls short to improve vulnerability management programs and prioritization to tackle today’s threats.
14 06, 2017

Beware ErraticGopher

By | June 14th, 2017|Patch Tuesday|Comments Off on Beware ErraticGopher on Beware ErraticGopher

Another Microsoft Patch Tuesday party yesterday, fixing lots of vulnerabilities that have been exploited in the wild — with some really stellar exploit names
15 05, 2017

Does WannaCry Mark a New Era of Global, Distributed Cybercrime?

By | May 15th, 2017|Threat Intelligence|Comments Off on Does WannaCry Mark a New Era of Global, Distributed Cybercrime? on Does WannaCry Mark a New Era of Global, Distributed Cybercrime?

In 2017, the Skybox Security Research Lab predicted a new business model, distributed cybercrime, which it predicted would result in a global malware outbreak. WannaCry was an example of such an outbreak.
9 05, 2017

Windows “Crazy–Bad” Zero–Day

By | May 9th, 2017|Vulnerability & Threat Management|Comments Off on Windows “Crazy–Bad” Zero–Day on Windows “Crazy–Bad” Zero–Day

A zero–day RCE vulnerability affecting many Windows OS products has been referred to as “the worst Windows remote code exec in recent memory.”