One More Time-Vendor Says Their HW is Buggy and They Are Not Going to Patch Them
This is not new news. Vendors only patch hardware and software for so long and then, YOU NEED TO REPLACE IT. Even if it is still “working” -because the hackers still find bugs. But now, you have no protection. In this case it is Cisco. The routers that they are NOT going to patch are the RV110W, RV130, RV130W and RV215W. This is actually not the first time these particular routers have had vulnerabilities announced and not the first time Cisco has said, nope – not patching them. If you are still running these routers, replace them NOW! Credit: The Register
Google Completes $5 Billion Purchase of Mandiant
It’s nice to have a lot of cash in your pocket. In Google’s case, about $5 billion, which IS pocket change to them. They have completed the purchase of Mandiant to beef up its security portfolio. Credit: Security Week
Microsoft Issues Last Warning to Exchange Users- Basic Auth Gone Oct 1
Microsoft has issued one last reminder that Exchange Online is shutting off legacy basic authentication as of October 1, 2022. Microsoft warned this was happening three years ago. Microsoft says that there are still a number of customers who are “unprepared for this change”. This represents millions of customers, according to Microsoft. Credit: Spiceworks
Mandiant Says N. Korea Spreading Trojanized Versions of Putty
Mandiant says that North Korea is using a WhatsApp to get victims to download a trojanized version of PuTTY in regards to responding to a job app. However, this could be easily cloned to use different lures and different applications but with the same strategy. Warn users about this type of attack if they have the ability to install software Credit: The Hacker News
Botched Cyber Attack Turns into Physical Attack and Lands Attackers in Jail
Three UK attackers attempted to steal a local man’s virtual currencies by assaulting him physically. That is always the week spot in cyber attacks. Hold a gun to a victim’s head and he will likely turn over his crypto. One of the attackers was wearing a police uniform as part of the attack. The intended victim was not home at the time, but a neighbor was suspicious and called the real cops, who arrested them nearby. Credit: Brian Krebs