Highlights and Updates

Siemens Releases Patches

Monday, 3rd July 2017
Siemens has released fixes for vulnerabilities in two of its products. One of the vulnerabilities is an improper authentication issue that affects SIMATIC CP 44x-1 

Multiple Petya Ransomware Infections Reported

Tuesday, 27th June 2017
We have received multiple reports of Petya ransomware infections in many countries around the world. Petya ransomware encrypts the master boot records of infected Windows computers, making affected machines unusable. Open-source reports indicate that the ransomware exploits vulnerabilities in Server Message Block (SMB).

Google Will Stop Scanning eMail for Targeted Ads

Tuesday, 27th June 2017
By the end of this year, Google will stop scanning Gmail messages to serve personalized advertisements to users. Google has already stopped the practice in its G Suite Gmail. Ads will instead be served based on users' settings. 

NIST Releases New Digital Identity Guidelines

Monday, 26th June 2017
The National Institute of Standards and Technology (NIST) has released the Digital Identity Guidelines document suite. The four-volume suite offers technical guidelines for organizations that use digital identity services.

Intel Skylake and Kaby Lake Processor Flaws

Monday, 26th June 2017
A flaw in Intel Skylake and Kaby Lake processors could be the reason some users are experiencing application and system hiccups, data corruption, and data loss. 

Cisco Releases Security Updates

Wednesday, 21st June 2017
Cisco has released updates to address several vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of a system.

Drupal Releases Security Updates

Wednesday, 21st June 2017
Drupal has released an advisory to address several vulnerabilities in Drupal versions 7.x and 8.x. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.

IC3 Issues Internet Crime Report for 2016

Wednesday, 21st June 2017
The Internet Crime Complaint Center (IC3) has released its 2016 Internet Crime Report, describing the numbers and types of cyber crimes reported to IC3. Business Email Compromise (BEC), ransomware attacks, tech support fraud, and extortion are all common schemes affecting people in the U.S. and around the world.

Stack Clash Vulnerability

Monday, 19th June 2017
A memory management vulnerability affecting a number of open source operating systems (OSes), including Linux, OpenBSD, NetBSDm FreeBSD, and amd64, could be exploited to corrupt memory and allow arbitrary code execution. 

Google Releases Security Updates for Chrome

Thursday, 15th June 2017
Google has released Chrome version 59.0.3071.104 for Windows, Mac, and Linux. This version addresses several vulnerabilities, including one that an attacker could exploit to cause a denial-of-service condition.