bmhume

Top Linux Vulnerabilities for October 2021 1. Missing input validation in domain names in Node.js Severity: Critical         CVSS Score: 9.8 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to remote code execution, Cross-site scripting (XSS), application crashes due to missing...

October Patch Tuesday 2021 Fixes 71 Flaws and Weaponized Threat Microsoft Releases October 2021 Patch Tuesday Fixes There are 3 Critical, 67 Important and a single Low fix in this October Patch Tuesday. Fixes include Microsoft Windows and Windows components, Microsoft...

Linux Vulnerabilities of the Week: October 4, 2021 1. Apache HTTP Server (2.4.48 and earlier) vulnerability Severity: Critical     CVSS Score: 9.8 ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data...

10 Reasons You Should Stop Using WSUS What Is WSUS and how does it work? Microsoft Windows Server Update Services (WSUS) is an add-on Windows operating system product for installing Microsoft product updates. Typically, every corporate network has it by...

Google Chrome Zero-Day Is Currently Being Weaponized Google Chrome Zero-Day Is Being Weaponized Google has released 94.0.4606.61 today to the Stable Channel to resolve serious issues impacting Windows, Linux and Mac OS. This year Google has released 11 zero-day versions...

Linux Vulnerabilities of the Week: September 27, 2021 1. Missing input validation in domain names in Node.js Severity: Critical         CVSS Score: 9.8 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to remote code execution, Cross-site scripting (XSS), application crashes due...

Despite Training, Users Struggle to Identify Malicious Traffic Is Security Training Enough? The last five years has seen a big increase in the amount of security training offered to employees. They are schooled heavily on how to recognize phishing emails,...

The Great Resignation Requires Security Vigilance and Automation How the Great Resignation Is Affecting IT Departments Many IT and security personnel quit or were laid off during the pandemic. And according to the Microsoft 2021 Work Trend Index, many more...

The Shocking Truth About Ransomware Ransomware: You Ain’t Seen Nothing Yet Ransomware statistics have been rising for years. But earlier this year, it appeared that things might be slowing down. There were actually a couple of months when the volume...

Why IT Security Must Become More Automated The Case for IT Automation There was a time when manual security and manual IT tasks were workable. But that day passed a long time ago. Yet many in IT and security find...