TTCSIRT-294.031820: TT-CSIRT ADVISORY- VMWARE RELEASES SECURITY UPDATES FOR MULTIPLE PRODUCTS
VMware has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. TT-CSIRT encourages users…
Read MoreGuidelines for Enterprise VPN Security
As more organizations move towards telecommuting (work from home) in an attempt to curtail the spread of COVID-19, the U.S. Cyber and Infrastructure Security Agency (CISA) has issued guidelines for…
Read MoreTTCSIRT-293.031120: TT-CSIRT ADVISORY- MICROSOFT SMBv3 VULNERABILITY
Microsoft has published an advisory for a critical remote code execution (RCE) vulnerability in Microsoft Server Message Block 3.1.1 (SMBv3). This vulnerability affects both SMB servers and SMB clients. .This…
Read MoreTTCSIRT – 292-030620: TT-CSIRTADVISORY – UPDATE CISCO EMAIL SECURITY APPLIANCES: UNCONTROLLED RESOURCE EXHAUTION VULNERABILITY
A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection (AMP) in Cisco AsyncOS Software for Cisco Email Security Appliances (ESAs) could allow an unauthenticated remote attacker to…
Read MoreTTCSIRT-291.030620: TT-CSIRT ADVISORY- TOMCAT RELEASES SECURITY UPDATES
Tomcat has released security updates to address vulnerabilities affecting multiple products. This update for tomcat to version 9.0.31 fixes the following three (3) issues: CVE-2019-17569, CVE-2020-1935 and CVE-2020-1938. TT-CSIRT encourages…
Read MoreTTCSIRT-290.030520:TT-CSIRT ADVISORY LET’S ENCRYPT REVOKING 3 MILLION TLS CERTIFICATES ISSUED INCORRECTLY DUE TO A BUG
The most popular free certificate signing authority Let’s Encrypt is going to revoke more than 3 million TLS certificates within the next 24 hours that may have been issued wrongfully due to…
Read More