IT and Business Insights for SMB Solution Providers

My Information Resource

Blog Entry
July 25th, 2018 | Jay Ferron
No More Ransomware Web Site https://www.nomoreransom.org/en/index.htmlis a site you should save in your favorite. - read more
 
Blog Entry
July 24th, 2018 | Jay Ferron
The Apache Software Foundation has released security updates to address vulnerabilities in Apache Tomcat versions 9.0.0.M9 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.51, and 7.0.28 to 7.0.86. A remote attacker could exploit one of these vulnerabilities to obtain sensitive information. - read more
 
Blog Entry
July 24th, 2018 | Jay Ferron
  Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange. Overview Bluetooth firmware or operating system software drivers may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device. - read more
 
Blog Entry
July 14th, 2018 | Jay Ferron
Phishing is the attempt to acquire sensitive information such as usernames, passwords, and credit card details (and sometimes, indirectly, money), often for malicious reasons, by masquerading as a trustworthy entity in an electronic communication. Here a new one that has started to circulate.__________________________________________ - read more
 
Blog Entry
 
Blog Entry
July 14th, 2018 | Jay Ferron
The Chinese cybersecurity research team known as Keen Security Lab has disclosed 14 security vulnerabilities affecting a range of BMW vehicles. Eight of the flaws affect the infotainment system, four affect the Telematics Control Unit (TCU), and two affect the Central Gateway Module (CGM). The TCU handles remote communication in the vehicle, such as the ability to unlock the doors remotely. - read more
 
Blog Entry
July 14th, 2018 | Jay Ferron
MuddyWater malware is believed to be once again targeting organizations across the world.  This malware was first reported when it targeted the Saudi government back in 2017 andwas reported to have also targeted other organizations in the US, Turkey, and other Middle Eastern countries. - read more
 
Blog Entry
July 14th, 2018 | Jay Ferron
It was announced that European researchers discovered that the popular PGP and S/MIME email encryption standards are vulnerable to being hacked. Dubbed EFAIL, it is described as vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME. From the website, EFAIL abuses active content of HTML emails to exfiltrate plaintext through requested URLs. - read more
 
Blog Entry
July 14th, 2018 | Jay Ferron
Red Hat Enterprise Linux (RHEL) is a popular distribution used by many organizations for servers and other network endpoints. Two free versions of the operating system have also branched out of RHEL, Fedora and CentOS. US-CERT issued an alert Wednesday that a critical vulnerability had been discovered in the Network Manager application and how it handles Dynamic Host Configuration Protocol (DHCP) responses. - read more
 

Pages

Subscribe to My Information Resource