Wednesday, January 27WE ACCEPT QUALIFIED GUEST POSTS

Tag: cisa

Mozilla Releases Security Updates for Firefox and Firefox ESR
Technology

Mozilla Releases Security Updates for Firefox and Firefox ESR

Washington, DC (STL.News) Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR.  An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Mozilla Security Advisories for Firefox 81 and Firefox ESR 78.3 and apply the necessary updates. CLICK to VIEW SOURCE
CISA Releases Emergency Directive on Microsoft Windows Netlogon Remote Protocol
Technology

CISA Releases Emergency Directive on Microsoft Windows Netlogon Remote Protocol

Washington, DC (STL.News) The Cybersecurity and Infrastructure Security Agency (CISA) has released Emergency Directive (ED) 20-04 addressing a critical vulnerability— CVE-2020-1472—affecting Microsoft Windows Netlogon Remote Protocol.  An unauthenticated attacker with network access to a domain controller could exploit this vulnerability to compromise all Active Directory identity services. Earlier this month, exploit code for this vulnerability was publicly released.  Given the nature of the exploit and documented adversary behavior, CISA assumes active exploitation of this vulnerability is occurring in the wild. ED 20-04 applies to Executive Branch departments and agencies; however, CISA strongly recommends state and local governments, the private sector, and others patch this critical...