Adobe Monthly Patches are out, with 5 products, patched.  There are Critical patches for Download Manager, Media Encoder, and Creative Cloud Desktop. Microsoft Monthly Patches are out, with fixes for 123 vulnerabilities. Of these, 17 are critical and 2 were previously disclosed. DNS Servers are at Critical risk for RCE. Oracle Quarterly Patche...

Monthly Patches are out for SAP and Siemens, with one SAP patch rating Critical. New Alerts for F5 and Linux. Schneider Electric, Microsoft, Adobe, and Oracle patches will come out later today. The Hot News SAP patch affects Internet facing SAP systems, and earned an Alert Notice from CISA, urging to patch within 24 hours.We have raised the Overall...

New Alerts for Smiths Medical, HPE, NetApp, and Linux.   Tomorrow is Monthly Patch Day for Microsoft, Adobe, SAP, Schneider Electric, and Siemens.  Also, Oracle Quarterly Patches come out tomorrow as well.  It's a big day, sleep well! Security Wizardry Cyber Threat Intelligence - The Radar Page Security Wizardry Radar Page provi...

New Alerts for Sophos, Citrix (exploits), MobileIron, GE Digital, Moxa, Dell, Micro Focus, and Linux.  The ISC is reporting active attempts to exploit the Citrix vulnerabilities reported earlier this week.  There is also a writeup by a researcher outlining the vulnerabilities in great detail. Security Wizardry Cyber Threat Intelligence - ...

Our cyber security recruitment team have created a short video with Jay Jay Davey, a military leaver who is now in a civilian cyber role. Recruitment CND are also the UK's oldest independent cyber security recruitment agency, specialising in global security recruitment since 2004. We work with both contract and permanent roles and our recruiters ar...

Getting Found When looking for a new role it goes without saying that you should always aim to have as many skills that you've covered (and that you feel could be relevant) on your CV as are possible, but there's more to it than that. A good example centres around those working in the SOC space. I work with CVs that talk about working with SIEM too...

Further to last week's blog posting on user-agents, we are examining some of the malicious attempts seen crafted against a non-critical web-asset that our SOC monitors. Looking through our machine data using the dashboards that we have developed in this instance using Splunk, we are able to rapidly identify anomalies with low effort. We n...

Quarterly Patches are out for Juniper. New Alerts for Rittal, Micro Focus, IBM, FreeBSD, and Linux. F5 has updated the mitigation for the TMUI RCE vulnerability again. Security Wizardry Cyber Threat Intelligence - The Radar Page Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries. http...

Our cyber security recruitment team in conjunction with our own veterans, have put together a short video about which military leavers taking a civilian cyber security role Recruitment CND are also the UK's oldest independent cyber security recruitment agency, specialising in global security recruitment since 2004. We work with both contract a...

Monthly Patches are out for Qualcomm and Palo Alto Networks. New Alerts for Grundfos, F5 (more exploits), Citrix, Mozilla, Qualcomm, IBM, Zyxel, and Linux. We have dropped the India:China GeoPolitical alert to Guarded, as they are working on a disengagement process. F5 has updated the mitigation and IOC guidance in the TMUI RCE bulletin.  And ...

Our cyber security recruitment team in conjunction with our own veterans, have put together a short video about which military leavers taking a civilian cyber security role Recruitment CND are also the UK's oldest independent cyber security recruitment agency, specialising in global security recruitment since 2004. We work with both contract a...

Monthly Patches are out for Google Android, Pixel, and Samsung. New Alerts for HPE, Belden, and Linux. Although the Google Monthly Patches for Android are out, with Qualcomm patches, Qualcomm hasn't published their monthly bulletin yet.Xen has three vulnerabilities embargoed and due out today, but not out yet.Talos has put out Snort rules for the F...

New Alerts for F5 (active exploits) and Linux. There are reports of active exploitation of the TMUI RCE vulnerability reported June 30. Patch if your control plane is on the Internet. Better yet, move your control plane off the Internet... Security Wizardry Cyber Threat Intelligence - The Radar Page Security Wizardry Radar Page provides vulnerabili...

New Alerts for OpenClinic GA, Nortek, Mitsubishi Electric, IBM, Mozilla Thunderbird, and Linux. - The Mitsubishi Electric bulletin is for their TCP/IP Stack in GOT2000 HMI devices, but it doesn't appear to be associated with Ripple20.- Nortek is Security Management and Access Control equipment, it's a CVSSv3 score of 10 so access is open...- O...

New Alerts for Cisco, Wireshark, NetApp, Mozilla, Samba, and Linux. Security Wizardry Cyber Threat Intelligence - The Radar Page Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries. https://radar.securitywizardry.com

At CND our SOC analysts are inquisitive by nature; digging a little bit deeper and the further exploration of a lead in data is what we like to do. It's a bit like a prospector looking for that tiny fleck of gold that reveals a giant nugget; the detail is what matters and exploring it often leads you to threats you didn't even realis...