BadRabbit: Newest Ransomware to Target Corporate Networks

Updated 10/25/17 at 09:51am  Ransomware Alert: BadRabbit is the New NotPetya A new ransomware attack from the actors behind ExPetr/NotPetya has jumped into the spotlight. The outbreak began in Russia, infecting big Russian media outlets, but it has already spread. Several US and UK firms, with corporate entities in the Ukraine and Russia, have already…

Adobe Patches Zero-Day Exploit Used to Deliver Spyware

Urgent: Emergency Flash Update Adobe has patched a zero-day vulnerability used by the BlackOasis APT to plant surveillance software developed by Gamma International. The vulnerability, CVE-2017-11292, was disclosed on 10th October by researchers at Kaspersky Lab, who saw the payload and exploit used against a customer’s network. An exploit utilizing the flaw is delivered through…

Hyatt Hack: Major Data Breach

Hyatt Breach Affects 41 Hotels Worldwide We would like to warn hotel guests of another credit card breach at Hyatt Group, the second since December 2015. On Thursday last week, 41 of its hotels spread across 13 countries confirmed unauthorized access to payment card information. China had the worst breach with 18 hotels impacted, with…

Recall: Microsoft KB4041676

Will Microsoft Recall KB4041676? There are many reports of issues being encountered by companies who have applied KB4041676 in Octobers Microsoft patch Tuesday release. Issues of failed installations, rolled back installations or Windows being stuck on shutdown / sign-in are evidence something has gone wrong with this update. Looking at the Microsoft cumulative update, there…

October Patch Tuesday: Silent But Deadly

Should Third-Party Really Be your Second Priority? If you have a patching strategy delivering Microsoft updates on a routine basis, you should extend that capacity to include third-party updates. Just a couple weeks ago, we discovered a massive compromise in one of the world’s largest business and personal computer utilities, “CCleaner” by Piriform. Version 5.33.6162…

Syxsense Announces Support for Linux

Syxsense Announces Support for Linux ALISO VIEJO, Calif. (October 05, 2017) – Verismic, a global leader in cloud-based IT management technology, has released a new Syxsense version featuring support for Linux Operating Systems.  This new version provides IT departments with a single interface for automating discovery, Inventory and Patching of Windows, Linux and third-party applications. With…

Equifax Hack – What To Do Now

Three Steps To Protect Yourself and Your Company Earlier this month we learned that criminals gained access to certain files in Equifax’s system from mid-May to July by exploiting a weak point in website software. The big lesson here: Prepare yourself; this will happen again. You should already assume you are affected by the Equifax…

Breaking Patch News: Zero-Day Flaw

Patch Now: Microsoft Fixes Zero-Day Flaw Two major security flaws were addressed in the latest Patch Tuesday update. The first was a zero-day vulnerability that is currently being used in attacks against Russian-speaking users. The second is a response to the new BlueBorne exploit that targets Bluetooth devices. If you’ve deployed the Patch Tuesday updates…

Massive Equifax Cyberattack Affects 143 Million

Hackers Access Personal Data of 143 Million Consumers The credit reporting agency Equifax revealed that hackers gained access to company data that potentially compromised sensitive information for 143 million American consumers, including Social Security numbers and driver’s license numbers. Criminals took advantage of a website vulnerability to gain access to files from mid-May through July…