这个新的安全源可为 MSP 和 IT 专业人员提供资源,实时更新与 OS、浏览器、VPN 和 RDP 有关的网络安全新闻和安全漏洞警报。从而,可以保护您的企业和客户。

VMware Patches Critical Vulnerabilities in vCenter Server and Cloud Foundation September 2021

Friday, September 24, 2021

VMware has patched multiple critical vulnerabilities in their vCenter Server and Cloud Foundation products.

These vulnerabilities could be exploited by a remote attacker to take control of an affected system.

Administrators should update immediately to avoid potential exploitation.

Read the full details here:
VMware Security Advisory VMSA-2021-0020.1

Drupal Security Updates Released (9.2.6)

Wednesday, September 15, 2021

Drupal has released version 9.2.6 with fixes for 5 security issues.

Website administrators are urged to update as soon as possible.

Important links:
How to update Drupal
Drupal 9.2.6 Release Notes

Windows Security Updates Released (September 2021)

Tuesday, September 14, 2021

Microsoft has released September 2021 security updates for Windows 10/8/7 and Windows Server 2012/2008.

These updates include 49 security fixes, including 2 fixes for critical security issues. Users should update as soon as possible to avoid potential exploitation.

System administrators should update servers as soon as possible to avoid potential exploitation.

Important links:
How to update Windows
September 2021 Security Updates (Release Notes)

SAP Releases Critical Security Updates for Several Products

Tuesday, September 14, 2021

SAP has released several security updates for their products to fix critical vulnerabilities that could be exploited to take control of a vulnerable system.

Administrators should update immediately to avoid potential exploitation.

Read the full details here:
SAP Security Patch Day – September 2021

WordPress Security Update Released (5.8.1)

Thursday, September 9, 2021

WordPress has released version 5.8.1 with fixes for security issues affecting WordPress 5.4-5.8.

Website administrators are urged to update as soon as possible.

Important links:
How to update WordPress
WordPress 5.8.1 Release Notes

Cisco Patches Vulnerabilities in Several Products (August 2021)

Wednesday, August 18, 2021

Cisco has released software updates to fix multiple critical and high priority vulnerabilities in their products.

Attackers could exploit these vulnerabilities to take control of an affected system.

Administrators should apply updates immediately to avoid potential exploitation.

Important links:
US NCAS: Cisco Releases Security Updates
Cisco Security Advisories

SAP Releases Critical Security Updates for Several Products

Tuesday, August 10, 2021

SAP has released several security updates for their products to fix critical vulnerabilities that could be exploited to take control of a vulnerable system.

Administrators should update immediately to avoid potential exploitation.

Read the full details here:
SAP Security Patch Day – August 2021

Cisco Patches Vulnerabilities in Multiple Products (August 2021)

Thursday, August 5, 2021

Cisco has released software updates to fix high priority vulnerabilities in multiple products.

Attackers could exploit these vulnerabilities to take control of an affected system.

Administrators should apply updates immediately to avoid potential exploitation.

Important links:
US NCAS: Cisco Releases Security Updates
Cisco Security Advisories

General Advisory: SonicWall Warns of “Imminent Ransomware Campaign” Targeting EOL Devices

Wednesday, July 14, 2021

SonicWall has posted an urgent security alert warning customers of an “an imminent ransomware campaign” targeting Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) devices running end-of-life (EOL) 8.x firmware.

The security alert explains that legacy devices affected by this advisory “are at imminent risk of a targeted ransomware attack.”

System administrators are urged to update to the latest 9.x or 10.x firmware versions or immediately disconnect the devices and reset passwords to avoid potential ransomware attacks.

Important links:
Sonicwall Urgent Security Notice: Critical Risk To Unpatched End-Of-Life SRA & SMA 8.X Remote Access Devices
SonicWall warns of ‘imminent ransomware campaign’ targeting its EOL equipment

VMware Patches Vulnerability in VMware ESXi and Cloud Foundation

Tuesday, July 13, 2021

VMware has patched a vulnerability in their VMware ESXi and Cloud Foundation products.

This vulnerability could be exploited by an attacker with network access to port 5989 to bypass SFCB authentication on an affected ESXi server.

Administrators should update immediately to avoid potential exploitation.

Read the full details here:
VMware ESXi updates address authentication and denial of service vulnerabilities

Subscribe to the Feed

RSS