4 min read

[Security Tip] Recent Threats Summarized for Aug to Oct 2022

By Prime Care Tech Office of Compliance on Fri, Nov 04, 2022 @ 04:49 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize, address, and communicate them to our managed IT services clients.

Below you'll find our recap of events they addressed in the last few months. To check previous reports, see 2022 Security Threats.

If you're not a client, make sure your team knows about these security events, as well as future ones. Just click below to sign up. 

KEEP ME UPDATED

High Impact

Company/Source Product Type
Microsoft Multiple Security updates (Aug, Sep, Oct 2022)
Microsoft Microsoft Exchange Server 2013, 2016, and 2019 Mitigations for zero-day vulnerabilities exploited in the wild
VMware vSphere Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting

 

Medium Impact

Company/Source Product Type
Adobe Acrobat and Reader Security updates (Aug & Sep 2022
Meta Platforms WhatsApp PuTTY SSH Client used to deploy backdoors and establish communication
Fortinet Multiple Urgent patch for critical auth bypass bug
VMware Multiple Security updates (Aug 2022)

 

Low Impact

Company/Source Product Type
Apple Multiple Security updates (Sep 2022)
Mozilla Firefox, Firefox ESR, and Thunderbird Security updates (Aug & Sep 2022)

 

No Impact on Our Clients/FYI

Company/Source Product Type
Cisco Secure Web Appliance Security updates
Cisco Multiple Security updates (Oct 2022)
Microsoft Endpoint Configuration Managers Out-of-band security update
Mozilla Thunderbird Security updates (Sep & Oct 2022)

 

As part of our primeCLOUD services suite, we partner with leading IT vendors to offer security services like ransomware protection, phishing training, multi-factor authorization (MFA), data backup/recovery, and more.

If you're not confident your organization is on top of security threats, vulnerabilities, and patches, it may be time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch and let us walk you through critical items for your security checklist.

 

Topics: primeCLOUD cyber security security vulnerabilities security patches security threats
4 min read

[Security Tip] July Security Threats Summarized

By Prime Care Tech Security Team on Thu, Aug 04, 2022 @ 12:23 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize, address, and communicate them to our managed IT services clients.

Below you'll find our monthly recap of all events. To check previous reports, see 2022 Security Threats.

If you're not a client, make sure your team knows about these security events, as well as future ones. Just click below to sign up. 

KEEP ME UPDATED

 

High Impact

Company/Source Product Type
Google Chrome Security updates

 

Medium Impact

Company/Source Product Type
Microsoft Multiple Security updates
(July  2022)

 

Low Impact

Company/Source Product Type
Apple Multiple Security updates

 

No Impact on Our Clients/FYI

Company/Source Product Type
Cisco Multiple Security updates
Citrix Hypervisor Security updates
Open SSL Multiple Security updates
Oracle Multiple Security updates

 

As part of our primeCLOUD services suite, we partner with leading IT vendors to offer security services like ransomware protection, phishing training, multi-factor authorization (MFA), data backup/recovery, and more.

If you're not confident your organization is on top of security threats, vulnerabilities, and patches, it may be time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch and let us walk you through critical items for your security checklist.

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats
5 min read

[Security Tip] June Security Threats Summarized

By Prime Care Tech Security Team on Tue, Jul 05, 2022 @ 04:20 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize, address, and communicate them to our managed IT services clients.

Below you'll find our monthly recap of all events. To check previous reports, see 2022 Security Threats.

If you're not a client, make sure your team knows about these security events, as well as future ones. Just click below to sign up. 

KEEP ME UPDATED

 

High Impact

Company/Source Product Type
Microsoft Multiple Workaround guidance for MSDT Follina vulnerability

 

Medium Impact

Company/Source Product Type
CISA Multiple Recommended mitigations for Karakurt Data Extortion Group
Citrix Application Delivery Management Security update
Google Chrome Security updates
(June 10 and 22)
Microsoft Multiple Security updates
(June  2022)

 

Low Impact

Company/Source Product Type
Mozilla Firefox, Firefox ESR, Thunderbird Security updates

 

No Impact on Our Clients/FYI

Company/Source Product Type
Adobe Multiple Security updates
Atlassian Confluence Server and Data Center Security updates (CVE-2022-26134)
CISA Multiple Security updates
Cisco Multiple Security updates
Drupal Multiple Security updates
SAP Multiple Security updates

 

As part of our primeCLOUD services suite, we partner with leading IT vendors to offer security services like ransomware protection, phishing training, multi-factor authorization (MFA), data backup/recovery, and more.

If you're not confident your organization is on top of security threats, vulnerabilities, and patches, it may be time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch and let us walk you through critical items for your security checklist.

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats
6 min read

[Security Tip] April Security Threats Summarized

By Prime Care Tech Security Team on Sat, May 07, 2022 @ 06:14 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize, address, and communicate them to our managed IT services clients.

Below you'll find our monthly recap of all events. To check previous reports, see 2022 Security Threats.

If you're not a client, make sure your team knows about these security events, as well as future ones. Just click below to sign up. 

KEEP ME UPDATED

 

High Impact

Company/Source Product Type
Microsoft Remote Procedure Call Runtime Library Security vulnerability
(CVE-2022-26809)

 

Medium Impact

Company/Source Product Type
Google Chrome Security updates
(April 1 and 8)
Microsoft Multiple Security updates
(April  2022)
Mozilla Firefox and Firefox ESR Security updates
(April 8)

 

Low Impact

Company/Source Product Type
Apple Multiple Security updates

 

No Impact to Our Clients/FYI

Company/Source Product Type
Apache Struts 2 Security advisory
Arctic Wolf Multiple Security updates (Download/run Spring4Shell Deep Scan)
Cisco Multiple Security updates
CISA Multiple Security updates
Citrix SD-WAN Products Security updates
Drupal Multiple Security updates
Juniper Networks Multiple Security updates
Oracle Multiple Critical patch update (April 2022)
Spring Spring4Shell and Spring CLOUD Security update for function vulnerabilities
VMware Cloud Director Security updates

 

As part of our primeCLOUD services suite, we partner with leading IT vendors to offer security services like ransomware protection, phishing training, multi-factor authorization (MFA), data backup/recovery, and more.

If you're not confident your organization is on top of security threats, vulnerabilities, and patches, it may be time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch and let us walk you through critical items for your security checklist.

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats
5 min read

[Security Tip] March Security Threats Summarized

By Prime Care Tech Security Team on Thu, Mar 31, 2022 @ 04:36 PM

Each week our security team tracks threats, vulnerabilities, and patches announced by leading IT experts and vendors to ensure we prioritize, address, and communicate them to our managed IT services clients.

Below you'll find our monthly recap of all events. If you're not a client, make sure your team knows about these security events, as well as future ones. Just click below to sign up. 

KEEP ME UPDATED

 

High Impact

Nothing new in the high category was reported in March. To check previous reports, see 2022 Security Threats.


Medium Impact

Company/Source Product Type
Microsoft Multiple Security updates (March 2022)
VMware Multiple (ESXi) Security updates

 

Low Impact

Company/Source Product Type
Apple Multiple Security updates
Google Chrome Security updates
Mozilla Multiple Security updates
Mozilla Firefox, Firefox ESR Security updates
OpenSSL Multiple Security updates

 

No Impact to Our Clients/FYI

Company/Source Product Type
Cisco Multiple Security updates
CRI-O Multiple Security updates for Kubernetes
FBI Multiple Compromise indicators for RagnarLocker ransomware
Linux Multiple Dirty Pipe privilege escalation vulnerability
Mozilla VPN Security update
NSA Network infrastructure Security guidance
SAP Multiple Security updates (March 2022)
VMware Multiple Security updates

 

As part of our primeCLOUD services suite, we partner with leading IT vendors to offer security services like ransomware protection, phishing training, multi-factor authorization (MFA), data backup/recovery, and more.

If you're not confident your organization is on top of security threats, vulnerabilities, and patches, it may be time to conduct a cyber security audit.

Conduct Self-Audit Now

Or better, get in touch and let us walk you through critical items for your security checklist.

Topics: primeCLOUD cyber security security vulnerabilities cyber criminals security patches security threats

Featured

Posts by Tag

See all