Microsoft Releases Out-of-Band Security Updates for PrintNightmare

Original release date: July 6, 2021Microsoft has released out-of-band security updates to address a remote code execution (RCE) vulnerability—known as PrintNightmare (CVE-2021-34527)—in the Windows Print spooler service. According to the…

Comments Off on Microsoft Releases Out-of-Band Security Updates for PrintNightmare

CISA Releases Security Advisory for Philips Vue PAC Products

Original release date: July 6, 2021CISA has released an Industrial Controls Systems (ICS) Medical Advisory detailing multiple vulnerabilities in multiple Philips Clinical Collaboration Platform Portal (officially registered as Vue PACS)…

Comments Off on CISA Releases Security Advisory for Philips Vue PAC Products

Vulnerability Summary for the Week of June 28, 2021

Original release date: July 5, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- after_effects Adobe After Effects version 18.1 (and earlier)…

Comments Off on Vulnerability Summary for the Week of June 28, 2021

Kaseya VSA Supply-Chain Ransomware Attack

Original release date: July 2, 2021CISA is taking action to understand and address the recent supply-chain ransomware attack against Kaseya VSA and the multiple managed service providers (MSPs) that employ…

Comments Off on Kaseya VSA Supply-Chain Ransomware Attack

PrintNightmare, Critical Windows Print Spooler Vulnerability

Original release date: June 30, 2021The CERT Coordination Center (CERT/CC) has released a VulNote for a critical remote code execution vulnerability in the Windows Print spooler service, noting: “while Microsoft…

Comments Off on PrintNightmare, Critical Windows Print Spooler Vulnerability

CISA’s CSET Tool Sets Sights on Ransomware Threat

Original release date: June 30, 2021CISA has released a new module in its Cyber Security Evaluation Tool (CSET): the Ransomware Readiness Assessment (RRA). CSET is a desktop software tool that…

Comments Off on CISA’s CSET Tool Sets Sights on Ransomware Threat

CISA Begins Cataloging Bad Practices that Increase Cyber Risk

Original release date: June 29, 2021In a blog post by Executive Assistant Director (EAD) Eric Goldstein, CISA announced  the creation of a catalog to document bad cybersecurity practices that are exceptionally risky…

Comments Off on CISA Begins Cataloging Bad Practices that Increase Cyber Risk