Author: DEFENDEDGE

  • F5, CISA Warn of Critical BIG-IP and BIG-IQ RCE Bugs

    The F5 flaws could affect the networking infrastructure for some of the largest tech and Fortune 500 companies – including Microsoft, Oracle and Facebook. Read more

  • FBI-CISA Joint Advisory on Compromise of Microsoft Exchange Server

    Original release date: March 10, 2021 CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) to address recently disclosed vulnerabilities in Microsoft Exchange Server. CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, steal information, encrypt data for ransom, or even execute a destructive attack.… Read more

  • F5 Security Advisory for RCE Vulnerabilities in BIG-IP, BIG-IQ

    Original release date: March 10, 2021 F5 has released a security advisory to address remote code execution (RCE) vulnerabilities—CVE-2021-22986, CVE-2021-22987—impacting BIG-IP and BIG-IQ devices. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators review the F5 advisory and install updated software as soon as possible. This… Read more

  • Microsoft Releases March 2021 Security Updates

    Original release date: March 10, 2021 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s March 2021 Security Update Summary and Deployment Information and apply the necessary updates. This… Read more

  • Apple’s Device Location-Tracking System Could Expose User Identities

    Researchers have identified two vulnerabilities in the company’s crowd-sourced Offline Finding technology that could jeopardize its promise of privacy. Read more

  • Breach Exposes Verkada Security Camera Footage at Tesla, Cloudflare

    Surveillance footage from companies such as Tesla as well as hospitals, prisons, police departments and schools was accessed in the hack. Read more

  • SAP Releases March 2021 Security Updates

    Original release date: March 9, 2021 SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators to review the SAP Security Notes for March 2021 and apply the necessary updates.  This product is provided subject… Read more

  • Microsoft Patch Tuesday Updates Fix 14 Critical Bugs

    Microsoft’s regularly scheduled March Patch Tuesday updates address 89 CVEs overall. Read more

  • Dark Web Markets for Stolen Data See Banner Sales

    Despite an explosion in the sheer amount of stolen data available on the Dark Web, the value of personal information is holding steady, according to the 2021 Dark Web price index from Privacy Affairs. That leaves these thriving dirty data dealers in a familiar predicament — they need to lock down their growing businesses for… Read more

  • Adobe Critical Code-Execution Flaws Plague Windows Users

    The critical flaws exist in Adobe Framemaker, Connect and the Creative Cloud desktop application for Windows. Read more