Verizon Router Command Injection Flaw Impacts Millions

There is nothing like learning your home edge router could be vulnerable to command line injection attacks.  Please take note if you are a Verizon Fios customer.  Confirm your firmware version if possible and reach out to Verizon for support as needed.

https://threatpost.com/verizon-quantum-gateway-command-injection-flaw-impacts-millions/143606/

Latest Chrome update plugs a zero-day hole

I particularly like the title from the linked article from “The Register” – “Put down the cat, coffee, beer pint, martini, whatever you’re holding, and make sure you’ve updated Chrome (unless you enjoy being hacked)” .  It is imperative that we all patch these types of zero day vulnerabilities, especially once they are active in the wild.  Review and patch accordingly!

https://www.theregister.co.uk/2019/03/07/google_chrome_zero_day/

https://www.welivesecurity.com/2019/03/07/latest-chrome-update-plugs-zero-day-hole/

Adobe Flash Zero-Day Spreads via Office Docs

The ongoing battle against the exploitation of Adobe Flash continues.  This is but the latest in a long line of flaws and vulnerabilities to plague Flash and its brothers and sisters in the Adobe family of products.  Please review your environments and patch accordingly.  Also, take the time to educate your users to the nature of this particular exploit.

https://www.darkreading.com/threat-intelligence/adobe-flash-zero-day-spreads-via-office-docs/d/d-id/1333429

Report: All Intel Processors Made in the Last Decade Might Have a Massive Security Flaw

This has the potential to be hugely impactful for computer users across all industry segments and spectrums.  The threat of compromise aside, any fix that has the potential to degrade processing power by up to 30% is significant and will be felt worldwide.

https://thehackernews.com/2018/01/intel-kernel-vulnerability.html

https://gizmodo-com.cdn.ampproject.org/c/s/gizmodo.com/report-all-intel-processors-made-in-the-last-decade-mi-1821728240/amp