Configuration Management

Adobe releases security updates for Magento (APSB20-41) and EOL reminder

Adobe has released security updates to address vulnerabilities in Magento Commerce 1 and Magento Open Source 1. The company also warned that older Magento 1.x versions will be end of life (EOL) and no longer get software support after this patch update.

Adobe releases security updates for Magento (APSB20-41) and EOL reminder Read More »

Guidelines for securing Content Management Systems

The Australian Cyber Security Centre (ACSC) has released new guidelines to assist organizations in securing Content Management Systems (CMS). The guidelines include good mitigation advice in areas of patching, account management, hardening and monitoring to name a few.

Guidelines for securing Content Management Systems Read More »

Ransomware attack impacts pipeline operations

The Cybersecurity and Infrastructure Security Agency (CISA) issued a security alert of a ransomware attack launched against a pipeline operator. In the cyber attack, actors used spear phishing to gain a foothold into the organization’s IT network, then pivot to the operations technology (OT) network. CISA issued the alert on February 18 and encourages organizations

Ransomware attack impacts pipeline operations Read More »

NSA: Guidance to mitigate cloud vulnerabilities

The National Security Agency (NSA) has released guidelines to help organizations mitigate cloud vulnerabilities. The NSA document includes four classes of vulnerabilities at most risk to threat actors.

NSA: Guidance to mitigate cloud vulnerabilities Read More »

Threat actors are launching web shell attacks

Security experts from Microsoft have revealed threat actors are increasingly using web shell attacks in their campaigns. Microsoft’s investigation revealed actors such as ZINC, KRYPTON, and GALLIUM, exploit known vulnerabilities to implant web shells on internet-facing web servers.

Threat actors are launching web shell attacks Read More »

Windows 7 and Windows Server 2008 versions reach end of support

The time has finally arrived. Microsoft Windows 7 and multiple versions of Windows Server 2008 have reached end of support today, January 14, 2020. As a result, customers will no longer receive technical support and software updates for those products as of today.

Windows 7 and Windows Server 2008 versions reach end of support Read More »