Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize, address, and communicate them to our managed IT services clients.
Below you'll find our monthly recap of all events. To check previous reports, see 2022 Security Threats.
If you're not a client, make sure your team knows about these security events, as well as future ones. Just click below to sign up.
High Impact
Company/Source | Product | Type |
Microsoft | Remote Procedure Call Runtime Library | Security vulnerability (CVE-2022-26809) |
Medium Impact
Company/Source | Product | Type |
Chrome | Security updates (April 1 and 8) |
|
Microsoft | Multiple | Security updates (April 2022) |
Mozilla | Firefox and Firefox ESR | Security updates (April 8) |
Low Impact
Company/Source | Product | Type |
Apple | Multiple | Security updates |
No Impact to Our Clients/FYI
Company/Source | Product | Type |
Apache | Struts 2 | Security advisory |
Arctic Wolf | Multiple | Security updates (Download/run Spring4Shell Deep Scan) |
Cisco | Multiple | Security updates |
CISA | Multiple | Security updates |
Citrix | SD-WAN Products | Security updates |
Drupal | Multiple | Security updates |
Juniper Networks | Multiple | Security updates |
Oracle | Multiple | Critical patch update (April 2022) |
Spring | Spring4Shell and Spring CLOUD | Security update for function vulnerabilities |
VMware | Cloud Director | Security updates |
As part of our primeCLOUD services suite, we partner with leading IT vendors to offer security services like ransomware protection, phishing training, multi-factor authorization (MFA), data backup/recovery, and more.
If you're not confident your organization is on top of security threats, vulnerabilities, and patches, it may be time to conduct a cyber security audit.
Or better, get in touch and let us walk you through critical items for your security checklist.