Today’s VERT Alert addresses Microsoft’s September 2020 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-903 on Wednesday, September 9th. In-The-Wild & Disclosed CVEs There were no in-the-wild or disclosed CVEs included in this month’s security guidance. CVE Breakdown by Tag While historical Microsoft Security Bulletin groupings are […]… Read More
The post VERT Threat Alert: September 2020 Patch Tuesday Analysis appeared first on The State of Security.
As part of this month’s Patch Tuesday, Microsoft today released a fresh batch of security updates to fix a total of 129 newly discovered security vulnerabilities affecting various versions of its Windows operating systems and related software. Of the 129 bugs spanning its various products — Microsoft Windows, Edge browser, Internet Explorer, ChakraCore, SQL Server, Exchange Server, Office,
The Hacker News
Last week on Malwarebytes Labs, we dug into security hubris on the Lock and Code podcast, explored ways in which Apple’s notarization process may not be hitting all the right notes, and detailed a new web skimmer. We also explained how to keep distance learners secure, talked about PCI DSS compliance, and revealed that SMB security posture is weakened by COVID-19.
Other cybersecurity news
- School’s out for cyber attacker: Arrests made after multiple DDoS attacks target district networks (Source: Miami-Dade office of communications)
- Long arm of the law: British citizen extradited to the US regarding $ 2m in scam charges (Source: The Register)
- Warning signs: Your servers could be at risk should you spot cryptomining activity taking place (Source: Help Net Security)
- Election threats: How ransomware could spell trouble for the upcoming US election (Source: GovTech)
- Lloyd’s bank phish warning: A scam SMS attack is the order of the day for this bank’s customers (Source: Computer Weekly)
- COVID-19 scammers play on data breach fears: An interesting look at how old breach data is being repackaged to coax payment information from potential victims (Source: The Record)
- Fake ASDA mails in circulation: Missives offering entry into a competition for a £1,000 gift card should be ignored (Source: My London)
- Ad scams on TikTok: Researchers look at some of the ways bad ads make their way to the person holding the device (Source: Tenable)
- I can’t dance to this: Warner music group stores compromised by hackers (Source: Bleeping Computer)
- Fakes on Facebook: The social media giant takes down fake content run by a US-based pr firm (Source: Buzzfeed)
Stay safe, everyone!
The post A week in security (August 31 – September 6) appeared first on Malwarebytes Labs.