As the global pandemic, COVID-19 is hitting the world hard, organizations’ workforces are now working from home. No company can easily work without regular meetings, team communications, partner and client calls, webinars, online training, video-conferences etc. Not just corporate organizations, even the educational institutions are dependent on these remote meeting software to continue their regular […]
Read More →Microsoft publicizes November Patch Tuesday security updates today, fixing 74 common vulnerabilities and exposures (CVEs) in the family of Windows operating systems and related products. Out of these, 13 are classified as “Critical” and 61 as “Important”. Amongst the 13 Critical vulnerabilities, there is one vulnerability in Internet Explorer which is under the radar of […]
Read More →A Critical 19 year old remote code execution vulnerability has been identified in the WinRAR which is currently being actively exploited in the wild. The vulnerability is tracked as CVE-2018-20250 and exists in the library ‘unacev2.dll‘, library used to extract the old and rarely used ACE archive format. This vulnerability allows attackers to completely take […]
Read More →The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:36744 CVE-2016-3300 Netlogon elevation of privilege vulnerability in Microsoft Windows – CVE-2016-3300 oval:org.secpod.oval:def:36743 CVE-2016-3237 Kerberos security feature bypass vulnerability in Microsoft Windows – CVE-2016-3237 oval:org.secpod.oval:def:36742 CVE-2016-3237 CVE-2016-3300 MS16-101 Multiple […]
Read More →The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:36720 CVE-2016-3308 Elevation of privilege vulnerability in Windows Kernel-Mode Drivers – CVE-2016-3308 oval:org.secpod.oval:def:36721 CVE-2016-3309 Elevation of privilege vulnerability in Windows Kernel-Mode Drivers – CVE-2016-3309 oval:org.secpod.oval:def:36722 CVE-2016-3310 Elevation of privilege […]
Read More →Microsoft January 2016 Patch Tuesday bring nine security bulletins which is addressing 25 vulnerabilities. Six are rated as Critical and 3 are Important. Six Bulletins are rated as Critical , MS16-001 for Internet Explorer. MS16-002 for Microsoft Edge, MS16-003 for JScript and VBScript, MS16-004 for Microsoft Office, MS16-005 for Windows Drivers and MS16-006 for Silverlight. Microsoft security bulletin summary for January 2016 in order of severity MS16-001 : Vulnerabilities in Internet […]
Read More →MS Patch Tuesday May 2015 This May 2015 Patch Tuesday Microsoft released 13 security bulletins addressing a total of 46 vulnerabilities. This month high priority fix is for Internet Explorer which alone addresses 22 out of 46 vulnerabilities. This month 3 bulletins are rated as Critical, addressing 30 vulnerabilities and 10 are rated as […]
Read More →2015 CISCO Annual Security Report feels like a déjà vu. After all the song and dance, there are no surprises. Security has been and will always continue to be a people centric problem. People have always been used to gain access and continue to be unwitting participants. The end points in an enterprise are often […]
Read More →Anti-virus or Anti-malware is not dead; it is one of the defense mechanism in a defense-in-depth strategy. “Anti-virus is dead” is what you generally hear these days from the ‘over-the-top’ campaign makers. And what is the alternative, if so? There has never been a suitable response. Anti-virus or anti-malware products do their job quiet well, […]
Read More →