Security Patch

Computers, video cards, laptops, mice, spaceballs, network equipment...
User avatar
Frederick_Law
Posts: 1948
Joined: Mon Mar 08, 2021 1:09 pm
Answers: 8
Location: Toronto
x 1638
x 1471

Security Patch

Unread post by Frederick_Law »

Patch your Dells NOW!
https://www.theverge.com/2021/5/4/22419 ... dbutil-sys
Dell has released a security patch that fixes a security vulnerability affecting many Dell computers going back to 2009, along with instructions on how to install it if your computer is affected (via threatpost). The vulnerability, found by security research firm SentinelLabs, is present in a driver used by Dell and Alienware’s firmware update utilities, and it allows an attacker to gain full kernel-level permissions in Windows.
User avatar
Jaylin Hochstetler
Posts: 387
Joined: Sat Mar 13, 2021 8:47 pm
Answers: 4
Location: Michigan
x 380
x 355
Contact:

Re: Security Patch

Unread post by Jaylin Hochstetler »

Not much to be worried about. I said something to our IT guy, he looked into and came back with this.
image.png
Also it’s interesting that they are referencing 3rd party references.
NOT the dell website.
As seen in the code of the site.
image.png
A goal is only a wish until backed by a plan.
User avatar
Frederick_Law
Posts: 1948
Joined: Mon Mar 08, 2021 1:09 pm
Answers: 8
Location: Toronto
x 1638
x 1471

Re: Security Patch

Unread post by Frederick_Law »

Did the patch on weekend.
It just look for the dll and delete it ;;
And I didn't have it.
User avatar
Frederick_Law
Posts: 1948
Joined: Mon Mar 08, 2021 1:09 pm
Answers: 8
Location: Toronto
x 1638
x 1471

Re: Security Patch

Unread post by Frederick_Law »

Not hardware, Adobe.
https://threatpost.com/adobe-zero-day-b ... er/166044/
A patch for Adobe Acrobat, the world’s leading PDF reader, fixes a vulnerability under active attack affecting both Windows and macOS systems that could lead to arbitrary code execution.
User avatar
Jaylin Hochstetler
Posts: 387
Joined: Sat Mar 13, 2021 8:47 pm
Answers: 4
Location: Michigan
x 380
x 355
Contact:

Re: Security Patch

Unread post by Jaylin Hochstetler »

You want some more things to be scared of?
image.png
image.png
A goal is only a wish until backed by a plan.
User avatar
Frederick_Law
Posts: 1948
Joined: Mon Mar 08, 2021 1:09 pm
Answers: 8
Location: Toronto
x 1638
x 1471

Re: Security Patch

Unread post by Frederick_Law »

Jaylin Hochstetler wrote: Tue May 11, 2021 4:56 pm You want some more things to be scared of?
Nope, just keep my computer up to date.
User avatar
Jaylin Hochstetler
Posts: 387
Joined: Sat Mar 13, 2021 8:47 pm
Answers: 4
Location: Michigan
x 380
x 355
Contact:

Re: Security Patch

Unread post by Jaylin Hochstetler »

Frederick_Law wrote: Tue May 11, 2021 5:08 pm Nope, just keep my computer up to date.
Yup, that's the best way to avoid being attacked.
A goal is only a wish until backed by a plan.
User avatar
Frederick_Law
Posts: 1948
Joined: Mon Mar 08, 2021 1:09 pm
Answers: 8
Location: Toronto
x 1638
x 1471

Re: Security Patch

Unread post by Frederick_Law »

I guess nobody here has a WD MyBook Live but if you do, take it off the internet:
https://www.theverge.com/2021/6/29/2255 ... ot-control
User avatar
zxys001
Posts: 1077
Joined: Fri Apr 02, 2021 10:08 am
Answers: 5
Location: Scotts Valley, Ca.
x 2305
x 998
Contact:

Re: Security Patch

Unread post by zxys001 »

Jaylin Hochstetler wrote: Wed May 12, 2021 6:42 am Yup, that's the best way to avoid being attacked.
..the best fall back is to use the tried and true Schultz option.
Attachments
c8df71f440d0b74df19ce5943ca57ac5.gif
c8df71f440d0b74df19ce5943ca57ac5.gif (671.64 KiB) Viewed 2933 times
"Democracies aren't overthrown; they're given away." -George Lucas
“We only protect what we love, we only love what we understand, and we only understand what we are taught.” - Jacques Cousteau
User avatar
Tom G
Posts: 355
Joined: Tue Mar 09, 2021 9:26 am
Answers: 0
Location: Philadelphia, PA area
x 989
x 466

Re: Security Patch

Unread post by Tom G »

This may as well go here.

Ransomware. Hmm. That would suck. I'm not here to tell you how to run your business, but CISA is. They even want to help.

CISA’s CSET Tool Sets Sights on Ransomware Threat
CISA has released a new module in its Cyber Security Evaluation Tool (CSET): the Ransomware Readiness Assessment (RRA). CSET is a desktop software tool that guides network defenders through a step-by-step process to evaluate their cybersecurity practices on their networks.
This analyzes your security and provides recommendations to improve an organization's readiness.

Honestly, I have not run it. I'm leery of its results, i.e. just how bad is it? I will soon.
User avatar
Tom G
Posts: 355
Joined: Tue Mar 09, 2021 9:26 am
Answers: 0
Location: Philadelphia, PA area
x 989
x 466

Re: Security Patch

Unread post by Tom G »

The world is dangerous. The sky is falling. Here are 25 ways to ruin your day.
I offer no context, applicability, or summary to what is reasonably over my head. Derive your own sense from information.

2021 CWE Top 25 Most Dangerous Software Weaknesses
User avatar
mattpeneguy
Posts: 1386
Joined: Tue Mar 09, 2021 11:14 am
Answers: 4
x 2489
x 1899

Re: Security Patch

Unread post by mattpeneguy »

Frederick_Law wrote: Tue May 11, 2021 4:38 pm Not hardware, Adobe.
https://threatpost.com/adobe-zero-day-b ... er/166044/
Adobe has a security flaw?...That's surprising!
Post Reply