Hackers take over Microsoft’s Edge browser and VMware Workstation to win cash.

November Patch Tuesday

Microsoft released 13 updates.  Adobe released patches as well.  Update your software.

Make Sure You Patch MySQL, MariaDB, and Percona

If you have a database, patch it.  Flaws can be chained together to completely compromise a server.

Google Releases Details on Microsoft 0Day

Google only gave Microsoft 7 days before it released details about a 0Day currently in use in the wild.  Microsoft is rushing to create a patch.

New MacBook Pros have Arm Processor

To run the touch bar and touchid sensor.

Windows Atom Bombing Exploit

Using atom tables to get malicious code executed.  All Windows versions are vulnerable.  No patch as this “expected” behavior.

Flash Player Update

Adobe has released a critical patch for a Flash Player vulnerability being used in the wild.

iOS JPEG Vulnerability

If you use iOS, make sure patch it ASAP.  This flaw can be triggered by just viewing a malicious JPEG.

NCSAM Week 4 – Building a Cyber Security Workforce With You In It

October 24-28 is Week Four of the National Cyber Security Awareness Month campaign, a national initiative to ensure everyone knows what they need to do to stay safe online.

Stay engaged:

  1. Attend one of this week’s IT Security presentations:
    Theme:   Building a Cyber Security Workforce With You In It
    Dates:   This Tuesday (10/18) or Wednesday (10/19)
    Time:   10:00 -10:45am
    Location:   University Center SIGNAL MOUNTAIN Room
  2. Keep up with the IT Security Blog.
  3. Visit the IT Security website.
  4. View the IT Security Awareness videos available to faculty and staff via UTC Learn.

Dirty Cow Linux Vulnerability

Allows local users to get root level access.  Patch ASAP.