6 min read

[Security Tip] November Security Threats Summarized

By Prime Care Tech Security Team on Thu, Dec 02, 2021 @ 12:51 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize and address them for our managed IT services clients. If you're not a client, make sure your team knows about these security events from November 2021, as well as future ones.

Subscribe Yourself or Colleague


High Impact

Source Product Type
Citrix n/a Security updates

 

Medium Impact

Source Product Type
VMware n/a Security advisory

 

Low Impact

Source

Product

Type

Apple

iCloud for Windows 13

Security updates

CISA

n/a

Security Advisory - Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities

Cisco

Multiple

Security updates for vulnerabilities

Google

Chrome

Security updates

Mozilla

Firefox, Firefox ESR

Security updates

Samba

n/a

Security updates

 

No Impact to Our Clients/FYI

Source

Product

Type

CISA

n/a

Security Advisory - Multiple Data Distribution Service Implementations

CISA

n/a

Security Advisory - Siemens Nucleus Real-Time OS

Drupal

n/a

Multiple security updates

ManageEngine

ADSelfService Plus

Security researchers alert of active targeting

Palo Alto Networks

PAN-OS

Security updates

SAP

Multiple

Security updates (Nov 2021)

VMware

Tanzu Application Service for VMs

Security update

 

If you're not confident that your organization is on top of weekly security threats, vulnerabilities, and patches, it's time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch so we can walk you through the critical items for your security checklist.

 
Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats
10 min read

[Security Tip] October's Security Threats Summarized

By Prime Care Tech Security Team on Fri, Oct 29, 2021 @ 02:51 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize and address them for our managed IT services clients. If you're not a client, make sure your team knows about these security events from October 2021, as well as future ones.

Subscribe Yourself or Colleague


High Impact

Source Product Type
AMD Ryzen Chipset Driver Patches for security vulnerabilities
Microsoft NTLM Relay Mitigation advice for PetitPotam attacks 
ManageEngine ADManager Plus Security fix for critical vulnerability
VMware n/a Security update

 

Medium Impact

Source Product Type
FBI n/a Indicators of compromise associated with Hive ransomware
Google Chrome Security updates
Intel Multiple Multiple security updates
Microsoft Multiple Mitigation advice and workarounds for zero-day threat CVE-2021-40444

 

Low Impact

Source Product Type
Atlassian Confluence Server and Data Center Security updates
ManageEngine ServiceDesk Plus Update for remote code execution (RCE) and server-side request forgery (SSRF) vulnerabilities
Microsoft Multiple Security updates (Aug 2021)
Microsoft Multiple Security updates (Sep 2021)
Mozilla Firefox, Firefox ESR, and Thunderbird  Security updates
Pulse Secure Secure Connect Security update
Cisco Multiple Security Updates
Mozilla Firefox, Firefox ESR Security updates
Adobe Multiple Security Updates 
Apple Multiple Security Update to Address CVE-2021-30883
Microsoft Multiple Security Updates (October 2021)
Google Chrome  v95.0.4638.54 for Windows, Mac, and Linux

 

No Impact

Source Product Type
Apple iOS and iPadOS 14.8 Security updates
Citrix ShareFile Storage Zones Controller Security update
Drupal n/a Multiple security updates
FBI-CISA-CGCYBER ManageEngine ADSelfService Plus Advisory on advanced persistent threat (APT) exploitation of vulnerability
Fortinet FortiManager SD-WAN Orchestrator Patch for improper access control vulnerability
Microsoft Azure Linux Open Mgt Infrastructure Security update
SAP Multiple Security updates (Sep 2021)
WordPress WordPress Security update
CISA/NSA Multiple Guidance on Selecting and Hardening VPNs
Apache HTTP Servers Security update
Apache Server Address vulnerabilities under exploitation
CISA Multiple Security Advisory Honeywell Experion and ACE Controllers
CISA n/a Advisory remote users
Juniper Networks Multiple Security Updates
NSA Multiple Guidance on Avoiding the Dangers of Wildcard TLS Certificates and ALPACA Techniques
U.S. Water and Wastewater Systems Sector Facilities Ongoing Cyber Threats
Apache Tomcat (multiple versions) Security advisory to address vulnerability
Cisco IOS XE SD-WAN Software Security updates to address vulnerability
GPSD  v3.20 (Dec 31, 2019) through v3.22 (Jan 8, 2021) GPS Daemon (GPSD) bug
Oracle Multiple Critical patch update (October 2021) to address vulnerabilities 

 

If you're not confident that your organization is on top of weekly security threats, vulnerabilities, and patches, it's time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch so we can walk you through the critical items for your security checklist.

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats
3 min read

[Security Tip] Weekly Threats, Vulnerabilities, Patches - Oct 24, 2021

By Prime Care Tech Security Team on Mon, Oct 25, 2021 @ 05:53 PM

Does your IT team track reported security threats, vulnerabilities, and patches as often as weekly? We do. In fact, our primeCLOUD customers receive notifications about the impact each week, along with an explanation of how our team is mitigating risk on their behalf. Review last week's summary to understand the potential impacts and interventions. 

Effective Week Ending October 24, 2021

High Impact

No new impacts since Oct 3, 2021 report.

 

Medium Impact

No new impacts since September 19, 2021 report.

 

Low Impact

Source

Product(s)

Type

Google Chrome v95.0.4638.54 for Windows, Mac, and Linux

 

No Impact

*Prime Care Tech team assessed and determined our clients are not impacted/using product

Source

Product(s)

Type

Apache Tomcat (multiple versions) Security advisory to address vulnerability
Cisco IOS XE SD-WAN Software Security updates to address vulnerability
Oracle Multiple Critical patch update (October 2021) to address vulnerabilities 
CISA  GPSD v3.20 (Dec 31, 2019) through v3.22 (Jan 8, 2021) GPS (GPSD) Daemon bug alert

 

The constantly increasing demands of securing your data against cyber criminals make it challenging to keep up. If you need help staying on top of your game, get in touch.

What's an IT Assessment?

Perhaps someone from your organization could also benefit from these security alerts?

Subscribe a Colleague

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats
2 min read

[Security Tip!] What's MFA and Why's It Important?

By Prime Care Tech Security Team on Thu, Oct 21, 2021 @ 08:45 AM

Maintaining a strong security posture means being vigilant and aware of threats and vulnerabilities across the vast IT spectrum. An additional security layer to consider is multi-factor authentication (MFA). MFA is also known as two-factor authentication (2FA).

If cyber insurance is in your plans, you should know more and more insurance carriers require organizations to implement MFA before issuing a policy. Depending on the carrier, MFA may be required for web-based mail, system login, or even devices.

What exactly is MFA?

Multi-factor authentication protects against hackers by ensuring digital users are who they say they are. Users must provide two or more pieces of evidence (or factors) to verify their identity to access an app or digital resource. There are three main types of MFA:

  1. Things only you know (knowledge), such as a password or PIN
  2. Things only you have (possession), such as a badge, fob, or smartphone
  3. Things only you are (inherence), or biometric details such as fingerprints, retina, or voice

MFA blends at least two separate factors to verify it's actually you requesting access to your data.

Why is MFA important?

It makes stealing information much harder for the average criminal. Because MFA requires one more piece of information, in addition to user ID and password, it's likely hackers will choose someone else to target. It is a simple but powerful way to add an extra protection layer so only authorized users can access your data.

How do I obtain MFA?

Two common and effective MFA options are to install/use a client app on mobile phones or a key fob. Both receive a random number generated at regular intervals, usually 60 seconds, for users to enter along with a user ID and password. Prime Care Tech partners with MFA vendors and would be happy to help you connect.

Conclusion

MFA strengthens your security posture, making hacking into user accounts much more arduous. Even with MFA installed, you should not let your guard down! It takes effort and vigilance on the part of all staff members, particularly when it comes to email phishing attempts. Every organization must build a human firewall to prevent compromises to your data and systems.

Topics: primeCLOUD cyber security cyber insurance MFA multi-factor authentication user identification password
3 min read

[Security Tip] Weekly Threats, Vulnerabilities, and Patches - Oct 17, 2021

By Prime Care Tech Security Team on Tue, Oct 19, 2021 @ 12:41 PM

Does your IT team track reported security threats, vulnerabilities, and patches as often as weekly? We do. In fact, our primeCLOUD customers receive notifications about the impact each week, along with an explanation of how our team is mitigating risk on their behalf. Review last week's summary to understand the potential impacts and interventions. 

Effective Week Ending October 17, 2021

High Impact

No new impacts since Oct 3, 2021 report.

 

Medium Impact

No new impacts since September 19, 2021 report.

 

Low Impact

Source

Product(s)

Type

Adobe Multiple Products Security updates 
Apple Multiple Security update to address CVE-2021-30883
Microsoft Multiple Security updates (Oct 2021)

 

No Impact

*Prime Care Tech team assessed and determined our clients are not impacted/using product

Source

Product(s)

Type

Juniper Networks Multiple Security updates
NSA Multiple Guidance on avoiding dangers of wildcard Transport Layer Security (TLS) certificates and the exploitation of Application Layer Protocols Allowing Cross-Protocol Attacks (ALPACA)
U.S. Water and Wastewater Systems Sector Facilities n/a Ongoing Cyber Threats

 

The constantly increasing demands of securing your data against cyber criminals make it challenging to keep up. If you need help staying on top of your game, get in touch.

What's an IT Assessment?

Perhaps someone from your organization could also benefit from these security alerts?

Subscribe a Colleague

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats

Featured

Posts by Tag

See all