Please be aware of this vulnerability and update your environments accordingly if you are utilizing this series of Cisco Routers.
There is nothing like learning your home edge router could be vulnerable to command line injection attacks. Please take note if you are a Verizon Fios customer. Confirm your firmware version if possible and reach out to Verizon for support as needed.
I particularly like the title from the linked article from “The Register” – “Put down the cat, coffee, beer pint, martini, whatever you’re holding, and make sure you’ve updated Chrome (unless you enjoy being hacked)” . It is imperative that we all patch these types of zero day vulnerabilities, especially once they are active in the wild. Review and patch accordingly!
The ongoing battle against the exploitation of Adobe Flash continues. This is but the latest in a long line of flaws and vulnerabilities to plague Flash and its brothers and sisters in the Adobe family of products. Please review your environments and patch accordingly. Also, take the time to educate your users to the nature of this particular exploit.
A note to all Comcast customers – this vulnerability appears to have been addressed and corrected fairly quickly, but be diligent and keep your eyes open for identity related fraud.
Please review your Flash deployments if any remain and be prepared to remediate as soon as a patch is available. Flash honestly cannot disappear/die soon enough for the sake of end user security.
This article is in line with other reports of vendors and Intel itself backing away from Spectre and Meltdown patching updates and tweaks.
A big thank you to Mr. Skinner for the heads up on this issue. Please take the time to review the MyCloud devices you have deployed and update your firmware.
This has the potential to be hugely impactful for computer users across all industry segments and spectrums. The threat of compromise aside, any fix that has the potential to degrade processing power by up to 30% is significant and will be felt worldwide.
Please review your TeamViewer implementations and patch accordingly.