Page 1 of 1

Security Patch

Posted: Wed May 05, 2021 3:17 pm
by Frederick_Law
Patch your Dells NOW!
https://www.theverge.com/2021/5/4/22419 ... dbutil-sys
Dell has released a security patch that fixes a security vulnerability affecting many Dell computers going back to 2009, along with instructions on how to install it if your computer is affected (via threatpost). The vulnerability, found by security research firm SentinelLabs, is present in a driver used by Dell and Alienware’s firmware update utilities, and it allows an attacker to gain full kernel-level permissions in Windows.

Re: Security Patch

Posted: Thu May 06, 2021 1:58 pm
by Jaylin Hochstetler
Not much to be worried about. I said something to our IT guy, he looked into and came back with this.
image.png
Also it’s interesting that they are referencing 3rd party references.
NOT the dell website.
As seen in the code of the site.
image.png

Re: Security Patch

Posted: Mon May 10, 2021 8:19 am
by Frederick_Law
Did the patch on weekend.
It just look for the dll and delete it ;;
And I didn't have it.

Re: Security Patch

Posted: Tue May 11, 2021 4:38 pm
by Frederick_Law
Not hardware, Adobe.
https://threatpost.com/adobe-zero-day-b ... er/166044/
A patch for Adobe Acrobat, the world’s leading PDF reader, fixes a vulnerability under active attack affecting both Windows and macOS systems that could lead to arbitrary code execution.

Re: Security Patch

Posted: Tue May 11, 2021 4:56 pm
by Jaylin Hochstetler
You want some more things to be scared of?
image.png
image.png

Re: Security Patch

Posted: Tue May 11, 2021 5:08 pm
by Frederick_Law
Jaylin Hochstetler wrote: Tue May 11, 2021 4:56 pm You want some more things to be scared of?
Nope, just keep my computer up to date.

Re: Security Patch

Posted: Wed May 12, 2021 6:42 am
by Jaylin Hochstetler
Frederick_Law wrote: Tue May 11, 2021 5:08 pm Nope, just keep my computer up to date.
Yup, that's the best way to avoid being attacked.

Re: Security Patch

Posted: Wed Jun 30, 2021 10:27 am
by Frederick_Law
I guess nobody here has a WD MyBook Live but if you do, take it off the internet:
https://www.theverge.com/2021/6/29/2255 ... ot-control

Re: Security Patch

Posted: Wed Jun 30, 2021 11:21 am
by zxys001
Jaylin Hochstetler wrote: Wed May 12, 2021 6:42 am Yup, that's the best way to avoid being attacked.
..the best fall back is to use the tried and true Schultz option.

Re: Security Patch

Posted: Fri Jul 02, 2021 11:27 am
by Tom G
This may as well go here.

Ransomware. Hmm. That would suck. I'm not here to tell you how to run your business, but CISA is. They even want to help.

CISA’s CSET Tool Sets Sights on Ransomware Threat
CISA has released a new module in its Cyber Security Evaluation Tool (CSET): the Ransomware Readiness Assessment (RRA). CSET is a desktop software tool that guides network defenders through a step-by-step process to evaluate their cybersecurity practices on their networks.
This analyzes your security and provides recommendations to improve an organization's readiness.

Honestly, I have not run it. I'm leery of its results, i.e. just how bad is it? I will soon.

Re: Security Patch

Posted: Mon Jul 26, 2021 11:50 am
by Tom G
The world is dangerous. The sky is falling. Here are 25 ways to ruin your day.
I offer no context, applicability, or summary to what is reasonably over my head. Derive your own sense from information.

2021 CWE Top 25 Most Dangerous Software Weaknesses

Re: Security Patch

Posted: Mon Jul 26, 2021 11:58 am
by mattpeneguy
Frederick_Law wrote: Tue May 11, 2021 4:38 pm Not hardware, Adobe.
https://threatpost.com/adobe-zero-day-b ... er/166044/
Adobe has a security flaw?...That's surprising!