Frank Crast

Alert: Threat actors continue to exploit patched Pulse Secure VPN devices

Organizations that are running Pulse Security VPN devices may still be at risk of being exploited, even if previously patched, according to a new Department of Homeland Security (DHS) advisory. The risk is elevated if an actor previously exploited CVE-2019-11510 and stole AD credentials from the victim organization.

Alert: Threat actors continue to exploit patched Pulse Secure VPN devices Read More »

Cisco Critical security updates for IP Phones Web App and UCS Director

Cisco has released security patches for Cisco IP Phones Web Application, UCS Director and other products. Five of the vulnerabilities are rated Critical severity and another seven are rated High severity.

Cisco Critical security updates for IP Phones Web App and UCS Director Read More »

Intel releases security advisories for multiple products

Intel has released security updates to fix vulnerabilities in Intel PROSet/Wireless WiFi, Driver and Support Assistant, and other software products.

Intel releases security advisories for multiple products Read More »

Microsoft April 2020 Security Updates (with fixes for 2 zero-days)

Microsoft released the April 2020 Security Updates that includes 113 unique vulnerability fixes, 18 of those rated critical. The updates also include patches for two Adobe Font Manager zero day vulnerabilities disclosed in March.

Microsoft April 2020 Security Updates (with fixes for 2 zero-days) Read More »

Oracle Critical Patch Update for April 2020

Oracle has released its Critical Patch Update for April 2020 to include 297 vulnerability fixes across multiple products. The company also continues to receive reports of remote attackers attempting to maliciously exploit unpatched vulnerabilities.

Oracle Critical Patch Update for April 2020 Read More »