CVE-2020-1350: Wormable Remote Code Execution Vulnerability in Windows DNS Server Disclosed (SIGRed) https://ift.tt/2OvInYp Researchers disclose a 17-year-old wormable flaw in Windows DNS servers. Organizations are strongly encouraged to apply patches as soon as possible. Background On July 14, Microsoft patched a critical vulnerability in Windows Domain Name System (DNS) Server as part of Patch Tuesday […]

Critical RCE Flaw (CVSS 10) Affects F5 BIG-IP Application Security Servers https://ift.tt/2ZBIuab Cybersecurity researchers today issued a security advisory warning enterprises and governments across the globe to immediately patch a highly-critical remote code execution vulnerability affecting F5’s BIG-IP networking devices running application security servers. The vulnerability, assigned CVE-2020-5902 and rated as critical with a CVSS […]

Why should you worry about DNS attacks? https://ift.tt/3imhFPU Domain Name System (DNS) is a very basic protocol and service that enables Internet users and network devices to discover websites using human-readable hostnames instead of numeric IP addresses. This article provides a detailed explanation of how DNS works. If the DNS service is attacked or doesn’t […]

CISA warns Microsoft SMB v3 vulnerability is under attack https://ift.tt/30nYE9g Error: Server Error The server encountered an error and could not complete your request. Please try again in 30 seconds. Security via SearchSecurity https://ift.tt/2q47dlM June 8, 2020 at 10:28PM

12 Microsoft 365 security best practices to secure the suite https://ift.tt/36PmRGB Part one of this two-part series on Microsoft 365 (formerly Office 365) security weaknesses examined some of main misconfigurations that cause problems when trying to securely operate or migrate to the cloud-based Microsoft 365 suite of services. While knowing the challenges is half the […]

5 principles of the network change management process https://ift.tt/3c53pGE Network change management is a process that is intended to reduce the risk of a failed change. This process entails several steps that ensure successful changes, but how does each step work? Aircraft pilots use well-defined processes to ensure safe flying. Similarly, networking teams can use […]

Docker Desktop danger discovered, patch now https://ift.tt/3d6f4GF Docker has fixed a vulnerability that could have allowed an attacker to gain control of a Windows system using its service. The bug, discovered by Ceri Coburn, a researcher at security consultancy Pen Test Partners, exposed Docker for Windows to privilege elevation. Docker is a container system that […]

Razões para considerar uma carreira em cibersegurança https://ift.tt/3cw4PeP Quer esteja a acabar a escola, a sair da faculdade ou até a pensar em trocar de emprego, é provável que já tenha tido em conta a crescente indústria da tecnologia. Com novas ciberameaças a aparecer todos os dias não é de estranhar que os profissionais de […]