SAP released eight new Security Notes on its July 2020 Patch Day, but also included two updates to previous Patch Day Security Notes.
John Parlee named CISO for Park Place Technologies
Save 50% on a 1-year subscription to Dashlane’s premium password manager
We all know vital information about ourselves and our private digital accounts can be compromised by cybercriminals. However, many would be frightened to know just how compromised they and their vital data are right this moment.
Word docs with macros for IcedID (Bokbot), (Wed, Jul 15th)
New IRAP reports for Australian customers are now available in AWS Artifact
Following our Information Security Registered Assessors Program (IRAP) assessment in December 2019, we are excited to announce that we have additional new IRAP documents now available in AWS Artifact as a result of the recent IRAP assessment at the PROTECTED level that was finished in June 2020. This includes an IRAP compliance report for 33 additional services, plus 1 separate report for AWS Outposts. Also included are 3 features of services that were already assessed in 2019: Amazon EventBridge for Amazon CloudWatch, AWS Transit Gateway for Amazon Virtual Private Cloud (Amazon VPC), and AWS Lake Formation for AWS Glue. The IRAP documentation pack continues to provide the ability to plan, architect, and self-assess Amazon Web Services (AWS) Cloud services in accordance with the Secure Cloud Strategy of the Australian government’s Digital Transformation Agency.
VERT Threat Alert: July 2020 Patch Tuesday Analysis
Today’s VERT Alert addresses Microsoft’s July 2020 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-895 on Wednesday, July 15th.
No Summer Slump for Microsoft Vulnerabilities
July 14, 2020 • David Carver
In March, Microsoft’s Patch Tuesday featured 125 vulnerabilities. Then, there were 113 in April. May brought 111, and June had 129. This week, Microsoft includes 123 in the July edition of Patch Tuesday. Vulnerabilities have presented challenges all year, with little hope of slowing down. For some context, this is a +30% increase from March-July of vulnerabilities disclosed by Microsoft in 2019.
The case for a National Cyber Director
Written by Michael Daniel
The new normal – have the fundamentals of data security and encryption changed for Australian businesses?
The new normal – have the fundamentals of data security and encryption changed for Australian businesses?
Managed Security Services Provider (MSSP) News: 14 July 2020
The Content: Written for MSSPs, SOC as a Service (SOCaaS), Managed Detection and … Partnership – SIEM and SOC: Cygilant, provider of … data storage and cybersecurity solutions, has incorporated Alert Logic' MDR solution into …
July 2020 Patch Tuesday – 123 Vulnerabilities, 18 Critical, Hyper-V RemoteFX, DNS Server, Workstation, Adobe
This month’s Microsoft Patch Tuesday addresses 123 vulnerabilities with 18 of them labeled as Critical. The 18 Critical vulnerabilities cover Hyper-V, DNS Server, PerformancePoint, SharePoint Server, Office, Outlook, Remote Desktop, and several other workstation vulnerabilities. Adobe issued patches today for Download Manager, Media Encoder, Genuine Service, ColdFusion, and Creative Cloud.
Source: Spain is Customer of NSO Group
IMAGE: JACK GUEZ/AFP VIA GETTY IMAGES
The cellphones of several politicians in Spain, including that of the president of one of the countries’ autonomous regional parliaments, were targeted with spyware made by NSO Group, an Israeli company that sells surveillance and hacking tools to governments around the world, according to The Guardian and El Pais . Motherboard confirmed the specifics with security researchers who investigated the attempted hack and a Facebook employee who has knowledge of the case.