I am glad to know that Microsoft is anti-terrorist, though I do find it a bit bizarre that it has come to this. Who would have thought the EULA would require a terrorism clause.
Month: May 2016
Cisco patches Web Security Appliance flaws
Please review your Cisco footprint and patch accordingly.
http://www.scmagazine.com/cisco-patches-web-security-appliance-flaws/article/497953/
Microsoft Warns of Sneaky New Macro Trick
This is an interesting read concerning a new and fairly sneaky macro exploit that Microsoft has discovered. Enjoy!
https://threatpost.com/microsoft-warns-of-sneaky-new-macro-trick/118227/
Tech support scams go with a Bing
It is sad that we have reached this point. Microsoft is now preventing online support ads in Bing because the high risk of fraud. I am sure other search engines will follow suit. This is sad because there are good platforms for providing sound online support. Users lose in this situation, but I think Microsoft is doing the right thing.
http://www.welivesecurity.com/2016/05/23/tech-support-scams-go-bing/
Sophos Weekly Recap
Get Ahead of Evolving Healthcare Cyberthreats
For everyone in the Healthcare space, this is a good conversation with Don Kopanoff of Fortinet on cyber threats associated with Healthcare.
http://blog.fortinet.com/post/get-ahead-of-evolving-healthcare-cyberthreats
Krebs – Noodles & Company Probes Breach Claims
Another day and another fast food breach. Enjoy this coverage from Mr. Krebs.
http://krebsonsecurity.com/2016/05/noodles-company-probes-breach-claims/
VMware patches vulnerabilities that enable malicious code execution, privilege escalation
Please take note of these VMWare patches, review your systems and patch accordingly.
U.S. Cyber Command elevated to unified command unit, White House objects
This is an interesting move for our government and for our nation’s overall defense and offense cyber warfare strategy. Shane Harris wrote an excellent book called “@War“detailing the birth of US Cyber Command and our country’s cyber warfare programs. It is well worth a read to provide more context to the legislation at the heart of this article. I personally believe there is value in detaching this command structure from the NSA, though a mechanism for ongoing cooperation is important.
