Cyber Defense Advisors

Cyber Threat Trends

  • by
  • December 14, 2022

Microsoft Patch Tuesday, December 2022 Edition

Microsoft has released its final monthly batch of security updates for 2022, fixing more than four dozen security holes in its various Windows operating systems and related software. The most pressing patches include a zero-day in a Windows feature that tries to flag malicious files from the Web, a critical bug in PowerShell, and a […]

Cyber News, Cyber Threat Trends

Introducing Secure Firewall version 7.3

Introduction to Cisco Secure Firewall 7.3 Cisco’s latest release of Secure Firewall operating system, Secure Firewall Threat Defence Version 7.3, addresses key concerns for today’s firewall customers. The 7.3 release delivers more features to the three key outcomes: see and detect more threats faster in an increasingly encrypted environment, simplify operations, and lower the TCO […]

Cyber News, Cyber Threat Trends
  • by
  • December 14, 2022

Ransomware Attackers Use Microsoft-Signed Drivers to Gain Access to Systems

Microsoft on Tuesday disclosed it took steps to suspend accounts that were used to publish malicious drivers that were certified by its Windows Hardware Developer Program were used to sign malware. The tech giant said its investigation revealed the activity was restricted to a number of developer program accounts and that no further compromise was detected. Cryptographically signing malware […]

Cyber News, Cyber Threat Trends
  • by
  • December 14, 2022

Azure Confidential VMs

Hardware boundaries for high-security workloads This post is one of my posts on Azure Security. AWS was the frontrunner for many of the innovative cloud security features we use today. However, Azure was the first cloud provider to advertise use of a trusted execution environment (TEE) and confidential computing. Perhaps AWS use or Google used […]

Cyber News, Cyber Threat Trends
  • by
  • December 14, 2022

New GoTrim Botnet Attempting to Break into WordPress Sites’ Admin Accounts

A new Go-based botnet has been spotted scanning and brute-forcing self-hosted websites using the WordPress content management system (CMS) to seize control of the targeted systems. “This new brute forcer is part of a new campaign we have named GoTrim because it was written in Go and uses ‘:::trim:::’ to split data communicated to and […]

Cyber News, Cyber Threat Trends

Introducing Secure Firewall version 7.3

Introduction to Cisco Secure Firewall 7.3 Cisco’s latest release of Secure Firewall operating system, Secure Firewall Threat Defence Version 7.3, addresses key concerns for today’s firewall customers. The 7.3 release delivers more features to the three key outcomes: see and detect more threats faster in an increasingly encrypted environment, simplify operations, and lower the TCO […]

Cyber News, Cyber Threat Trends

Hacking Boston’s CharlieCard

Interesting discussion of vulnerabilities and exploits against Boston’s CharlieCard.

Cyber News, Cyber Threat Trends

Hacking Boston’s CharlieCard

Interesting discussion of vulnerabilities and exploits against Boston’s CharlieCard.

Cyber News, Cyber Threat Trends

New Google Tool Helps Devs Root Out Open Source Bugs

Free OSV-Scanner searches transitive dependencies

Cyber News, Cyber Threat Trends