Highlights and Updates

Joomla! Releases Security Update

Wednesday, 5th July 2017
Joomla! has released version 3.7.3 of its Content Management System (CMS) software to address several vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.

Microsoft Fixes Critical Flaw in Malware Protection Engine

Monday, 3rd July 2017
Microsoft has fixed a critical remote code execution flaw in its Malware Protection Engine. The vulnerability could be exploited by tricking a user into visiting a website seeded with malware or receiving an email or instant message with a malicious file attached as long as the user had real-time protection turned on. 

Siemens Releases Patches

Monday, 3rd July 2017
Siemens has released fixes for vulnerabilities in two of its products. One of the vulnerabilities is an improper authentication issue that affects SIMATIC CP 44x-1 

Multiple Petya Ransomware Infections Reported

Tuesday, 27th June 2017
We have received multiple reports of Petya ransomware infections in many countries around the world. Petya ransomware encrypts the master boot records of infected Windows computers, making affected machines unusable. Open-source reports indicate that the ransomware exploits vulnerabilities in Server Message Block (SMB).

Google Will Stop Scanning eMail for Targeted Ads

Tuesday, 27th June 2017
By the end of this year, Google will stop scanning Gmail messages to serve personalized advertisements to users. Google has already stopped the practice in its G Suite Gmail. Ads will instead be served based on users' settings. 

NIST Releases New Digital Identity Guidelines

Monday, 26th June 2017
The National Institute of Standards and Technology (NIST) has released the Digital Identity Guidelines document suite. The four-volume suite offers technical guidelines for organizations that use digital identity services.

Intel Skylake and Kaby Lake Processor Flaws

Monday, 26th June 2017
A flaw in Intel Skylake and Kaby Lake processors could be the reason some users are experiencing application and system hiccups, data corruption, and data loss. 

Cisco Releases Security Updates

Wednesday, 21st June 2017
Cisco has released updates to address several vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of a system.

Drupal Releases Security Updates

Wednesday, 21st June 2017
Drupal has released an advisory to address several vulnerabilities in Drupal versions 7.x and 8.x. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.

IC3 Issues Internet Crime Report for 2016

Wednesday, 21st June 2017
The Internet Crime Complaint Center (IC3) has released its 2016 Internet Crime Report, describing the numbers and types of cyber crimes reported to IC3. Business Email Compromise (BEC), ransomware attacks, tech support fraud, and extortion are all common schemes affecting people in the U.S. and around the world.