Friday 15 September 2017

McAfee monthly SNS Digest is being replaced

McAfee is replacing the monthly SNS Digest with the SNS Weekly Roundup.  To update your subscription preferences head over to the SNS Subscription Center.

Thursday 29 June 2017

AlienVault v5.4 Addresses 72 vulnerabilities

Several vulnerabilities were discovered in the underlying OS packages in AlienVault USM Appliance and OSSIM v5.3.7 and earlier. All of the vulnerabilities below have been confirmed and fixed in the AlienVault v5.4. AlienVault encourages customers to upgrade all AlienVault appliances to eliminate the vulnerabilities.

See the v5.4 release notice for details on the release.

Microsoft announce another CVE - Win32k Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.

Microsoft has reserved CVE candidate CVE-2017-8554 ready for announcement, but an early indication for MSRC shows the following OS Versions affected:

Windows 10
Windows 8.1
Windows 7

Server 2016
Server 2012 R2
Server 2012
Server 2008 R2
Server 2008

This vulnerability has been rated CVSS 4.7 resulting in a Medium Risk

Thursday 8 June 2017

InfoSecurity Professional Magazine - May June 2017 Issue

(ISC)² Digital Publication design for the professional development of its members have released the May/June 2017 issue.

This issue covers Choosing a Cloud Access Security Broker, the third in a series of InfoSecurity Professional insights to GDPR and the Hong Kong Chapters work at promoting Safe and Secure Online.

All members can earn 2 group A CPEs for reading list issue and completing the quiz. You can read this issue online here and take the quiz here.

Thursday 16 February 2017

McAfee Labs Threat Advisory for W32/DistTrack

W32/DistTrack is detection for a worm malware that has extremely destructive behaviour. Machines infected by it are rendered useless because most of the files, the Master Boot Record (MBR), and the partition tables are overwritten with random data. The overwritten data is lost and is not recoverable. The system is rendered unbootable.

McAfee Labs Threat Advisory for Ransomware-SAMAS

Ransomware-SAMAS is a detection for a family of ransomware that on execution encrypts certain file types present in the user’s system. The compromised user has to pay the attacker with a ransom to get the files decrypted.

Ransomware-SAMAS has been known to be used in targeted ransomware attacks on Organisations.

Friday 10 February 2017

PowerCLI 6.5 reference poster

If, like me you are using PowerShell to build and automate everything, the millions of PowerShell commands swimming around in your head can make you go stir crazy.

While listening to the VMware vExpert Community Podcast from 8/2/2017 I heard Kyle Ruddy announce that the PowerCLI 6.5 R1 Poster had been released.

Head over to the PowerCLI blog to grab yourself a copy.