4188 matches found
Week Two of National Cyber Security Awareness Month
October is National Cyber Security Awareness Month, an annual campaign to raise awareness about cybersecurity. In partnership with DHS, the National Cyber Security Alliance has released information on “Cyber from the Break Room to the Board Room” describing how users can protect their businesses...
VMware Releases Security Updates
VMware has released security updates to address a vulnerability in Horizon View. Exploitation of this vulnerability could allow a remote attacker to obtain sensitive information. Users and administrators are encouraged to review VMware Security Advisory VMSA-2016-0015 and apply the necessary...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the...
National Cyber Security Awareness Month
October is National Cyber Security Awareness Month, an annual campaign to raise awareness about cybersecurity. In partnership with DHS, the National Cyber Security Alliance has released the first in a series of tips focused on helping people protect their online activities and increase their...
Google Releases Security Update for Chrome
Google has released Chrome version 53.0.2785.143 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Chrome Releas...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in multiple products. Exploitation of one of these vulnerabilities could allow a remote attacker to take over an affected system. Users and administrators are encouraged to review the following Cisco Security Advisories and apply the...
ISC Releases Security Updates for BIND
The Internet Systems Consortium ISC has released updates that address a vulnerability in BIND. Exploitation of this vulnerability may allow a remote attacker to cause a denial-of-service condition. Available updates include: BIND 9 version 9.9.9-P3 BIND 9 version 9.10.4-P3 BIND 9 version 9.11.0rc...
OpenSSL Releases Security Updates
OpenSSL has released security updates to address vulnerabilities in previous versions. Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition. Available updates include: OpenSSL 1.1.0b for 1.1.0 users OpenSSL 1.0.2j for 1.0.2i users OpenSS...
FTC Releases Data Breach Recovery and Prevention Video
The Federal Trade Commission FTC has released a step-by-step video to users whose personal information may have been exposed in a data breach. This video provides instruction on how to report an incident and develop a personal recovery plan after a data breach has occurred. US-CERT encourages use...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the...
Drupal Releases Security Advisory
Drupal has released an advisory to address vulnerabilities in Drupal core 8.x versions prior to 8.1.10. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Drupal's Security Advisory an...
Mozilla Releases Security Updates
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include: Firefox 49 Firefox ESR 45.4 Users and administrators ar...
Apple Releases Security Updates
Apple has released security updates to address vulnerabilities in macOS Server, macOS Sierra, Safari, and iCloud for Windows. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the...
Cisco Releases Security Updates
Cisco has released security updates to address a vulnerability in several products. Exploitation of this vulnerability could allow a remote attacker to obtain sensitive information from an affected system. Users and administrators are encouraged to review the Cisco Security Advisory and apply the...
VMWare Releases Security Updates
VMware has released a security update to address vulnerabilities in vSphere Hypervisor ESXi, Workstation Pro, Workstation Player, Fusion, and Tools. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in several products. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the following Cisco Security Advisories and appl...
Google Releases Security Update for Chrome
Google has released Chrome version 53.0.2785.113 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of some of these vulnerabilities may allow an attacker to take control of an affected system. US-CERT encourages users and administrators to review the Chrome Releases pa...
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in Digital Editions, Flash Player, and Air SKD & Compiler software. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Ado...
Microsoft Releases September 2016 Security Bulletin
Microsoft has released 14 updates to address vulnerabilities in Microsoft software. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the following Microsoft Security Bulletins...
Apple Releases Security Updates
Apple has released security updates to address vulnerabilities in watchOS, Xcode, and iOS. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Apple security page for watchOS, Xcode,...
WordPress Releases Security Update
WordPress 4.6 and prior versions are affected by two vulnerabilities. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected website. US-CERT encourages users and administrators to review the WordPress Security Release and upgrade to WordPress...
Apple Releases Security Updates
Apple has released security updates to address vulnerabilities in OS X and Safari. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Apple security page for OS X and Safari and app...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in several products. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the following Cisco Security Advisories and...
Google Releases Security Update for Chrome
Google has released Chrome version 53.0.2785.89 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of some of these vulnerabilities may allow an attacker to take control of an affected system. Users and administrators are encouraged to review the Chrome Releases page an...
Adobe Releases Security Updates for ColdFusion
Adobe has released security updates to address a vulnerability in ColdFusion. Exploitation of this vulnerability may allow a remote attacker to obtain sensitive information from an affected system. Users and administrators are encouraged to review Adobe Security Bulletin APSB16-30 and apply the...
FTC Releases Alert on Securing Personal Information When Using Rental Vehicles
The Federal Trade Commission FTC has released recommendations for consumers to protect their personal data when using rental vehicles. Rental vehicles may contain infotainment systems that can connect with personal devices to stream music, allow hands-free calls and texts, or guide navigation...
Apple Releases Security Update
Apple has released a security update to address multiple vulnerabilites in iOS. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. The update is for iPhone 4s and later, iPad 2 and later, and iPod touch 5th generation and later. US-CER...
VMWare Releases Security Updates
VMWare has released security updates to address vulnerabilities in VMware Identity Manager and vRealize Automation. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review VMware Security...
FTC Releases Alert on Louisiana Flood Disaster Scams
The Federal Trade Commission FTC has released an alert on scams that cite the recent flood disaster in Louisiana. These charity scams take many forms, including emails containing links or attachments that direct users to phishing or malware-infected websites. Donation requests from fraudulent...
Fortinet Releases Security Advisory
Fortinet has released a security advisory to highlight a vulnerability in versions of FortiGate firmware that were released before August 2012. Exploitation of this vulnerability could allow a remote attacker to take control of an affected system. Using unpatched software increases risks from...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in several products. Exploitation of some of these vulnerabilities could allow an unauthenticated remote attacker to take control of an affected system. Users and administrators are encouraged to review the following Cisco Security...
Cisco Releases Security Update
Cisco has released a security update to address a vulnerability in its IOS XR Software for ASR 9001 Aggregation Services Routers. Exploitation of this vulnerability could allow an remote attacker to cause a denial-of-service condition. US-CERT encourages users and administrators to review the Cis...
Microsoft Releases August 2016 Security Bulletin
Microsoft has released nine updates to address vulnerabilities in Microsoft software. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Microsoft Security Bulletins MS16-095 through...
VMware Releases Security Update
VMware has released a security update to address vulnerabilities in vCenter Server, vSphere Hypervisor ESXi, Workstation Pro, Workstation Player, Fusion, and Tools. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages...
Apple Releases Security Update
Apple has released a security update to address a vulnerability in iOS. Exploitation of this vulnerability may allow a remote attacker to take control of an affected system. The update is for iPhone 4s and later, iPad 2 and later, and iPod touch 5th generation and later. US-CERT encourages users...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in several products. Exploitation of some of these vulnerabilities could allow an unauthenticated remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the following Cisco Securit...
Mozilla Releases Security Updates
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include: Firefox 48 Firefox ESR 45.3 Users and administrators ar...
Cybersecurity Tips for the Rio Olympics
As the 2016 Olympic Games begin in Rio de Janeiro, US-CERT reminds travelers to be aware of cybersecurity risks. At high-profile events, hacktivists may take advantage of the large audience to spread their message. Cyber criminals may attempt to steal personally identifiable information or harves...
ACSC Releases Risk Mitigation Strategies Against Malicious Email
The Australian Cyber Security Centre ACSC has published guidance to organizations on risks posed by malicious email. Systems infected through targeted email phishing campaigns act as an entry point for attackers to spread throughout an organization's entire enterprise, steal sensitive business or...
DHS Announces Cyber Incident Reporting Information
The United States Department of Homeland Security DHS has released guidelines and points of contact for reporting cyber incidents to the Federal Government. This communication follows the recent release of Presidential Policy Directive 41 PPD-41—United States Cyber Incident Coordination—which...
Google Releases Security Update for Chrome
Google has released Chrome version 52.0.2743.82 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Chrome Releas...
Cisco Releases Security Update
Cisco has released a security update to address a vulnerability in its Unified Computing System UCS Performance Manager. Exploitation of this vulnerability could allow an authenticated remote attacker to take control of an affected system. Users and administrators are encouraged to review the Cis...
Oracle Releases Security Bulletin
Oracle has released its Critical Patch Update for July 2016 to address 276 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Oracle Ju...
Apple Releases Multiple Security Updates
Apple has released security updates for iTunes, Safari, tvOS, watchOS, iOS, and OS X El Captain. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include: iTunes 12.4.2 for Windows 7 and later Safari 9.1.2 for OS X...
Drupal Releases Security Advisory
Drupal has released an advisory to address a vulnerability in Drupal core 8.x versions prior to 8.1.7. Exploitation of this vulnerability could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Drupal's Security Advisory and apply the...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in two products. Exploitation of one of these vulnerabilities could allow an unauthenticated remote attacker to take control of an affected system. Users and administrators are encouraged to review the following Cisco Security...
Microsoft Releases Security Updates
Microsoft has released 11 updates to address vulnerabilities in Microsoft software. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Microsoft Security Bulletins MS16-084 through...
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in Acrobat, Flash Player, Reader, and XMP Tookit for Java. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system Users and administrators are encouraged to review Adobe Securit...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in several products. Exploitation of some of these vulnerabilities could allow an unauthenticated remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the following Cisco Securit...
Symantec Releases Security Updates
Symantec has released security updates to address vulnerabilities in multiple products. Exploitation of some of these vulnerabilities may allow an attacker to take control of an affected system and cause a denial-of-service condition. Users and administrators are encouraged to review Symantec...