LINK Time to update your iPad and iPhone to 15.2.1.
LINK to the CSV file CVE Number CVE Title Remediation Due Date CVE-2021-43890 Microsoft Windows AppX Installer Spoofing Vulnerability 12/29/2021 CVE-2021-4102 Google Chromium V8 Engine Use-After-Free Vulnerability 12/29/2021
CISA has added another 13 vulnerabilities that are actively being exploited. This list is at the bottom and Complete CSV is listed HERE CVE Number CVE Title Remediation Due Date CVE-2021-44228 Apache Log4j2 Remote Code Execution Vulnerability 12/24/2021 CVE-2021-44515 Zoho Corp. Desktop Central Authentication Bypass Vulnerability 12/24/2021 CVE-2021-44168 Fortinet FortiOS Arbitrary File Download Vulnerability 12/24/2021 […]
LINK Its been highlighted a few times recently, FortiNet has come out in the last year with some very high damage vulnerabilities and coordinated attacked are continuously being used to exploit them
LINK Just wanted to reminder everyone this is coming.
LINK QNAP Small Office devices are subject to RCE’s. Examine SNAP for updates.
LINK If you have the FactoryTalk AssetCentre product you need to examine this closely.
LINK If you use Hypervisor (formerly XenServer) then you should investigate updating.
LINK SSU (Servicing Stack Update) – These are important to pull down and get installed because it involved how the platform actually performs additional updates. Suggest investigating this and rolling it out if possible.