VERT Threat Alert: October 2018 Patch Tuesday Analysis

| | Microsoft, Patch Tuesday, VERT
Today’s VERT Alert addresses Microsoft’s October 2018 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-800 on Wednesday, October 10th. In-The-Wild & Disclosed CVEs CVE-2018-8453 This vulnerability, a privilege escalation in Win32k’s handling of objects in memory, has been exploited in the wild ... Read More

VERT Threat Alert: September 2018 Patch Tuesday Analysis

Today’s VERT Alert addresses Microsoft’s September 2018 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-796 on Wednesday, September 12th. In-The-Wild & Disclosed CVEs CVE-2018-8440 This vulnerability was disclosed on Twitter on August 27th, and a high level analysis was published on August ... Read More

#TripwireBookClub – Gray Hat Python

In this third installment of #TripwireBookClub, we look at “Gray Hat Python,” written by Justin Seitz and published by No Starch Press. I had the opportunity to briefly meet Justin at CanSecWest the year this book was published, which only increased my interest in the book and ensured my preorder ... Read More

VERT Threat Alert: August 2018 Patch Tuesday Analysis

Today’s VERT Alert addresses Microsoft’s August 2018 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-792 on Wednesday, August 15th. In-The-Wild & Disclosed CVEs CVE-2018-8373 A vulnerability exists within the scripting engine in Internet Explorer. An attacker exploiting this vulnerability via a malicious ... Read More
Interesting Screenshots at Revolution 3 Tour

Interesting Screenshots at Revolution 3 Tour

Recently, my wife and I attended the Revolution 3 tour with Stone Temple Pilots, Bush, and The Cult. During Bush’s set, we heard “This is War” from the deluxe edition of 2017’s Black and White Rainbows album. While the verses of the song featured typical war imagery (aircraft, soldiers, etc.), ... Read More
Save the Embarrassment: The Value of Two-Factor Authentication - Facebook

Save the Embarrassment: The Value of Two-Factor Authentication

These days, it’s not a matter of if your password will be breached but when. Major websites experience massive data breaches at an alarming rate. Have I Been Pwned currently has records from 295 sites comprising 5.3 billion accounts. This includes well-known names like LinkedIn, Adobe, and MySpace. Password breaches ... Read More

Sextortion Scam Luring Victims in with Breached Passwords – Don’t Pay!

If you haven’t been targeted already, you might have at least heard about the latest “sextortion scam” that surfaced a couple weeks ago. I’ve been seeing the email scam making its rounds since then, and sure enough, it’s now hit my own inbox. Seeing this nefarious message firsthand, I wanted ... Read More

VERT Threat Alert: July 2018 Patch Tuesday Analysis

Today’s VERT Alert addresses Microsoft’s July 2018 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-786 on Wednesday, July 11th. In-The-Wild & Disclosed CVEs CVE-2018-8278 Microsoft Edge is vulnerable to a spoofing vulnerability that could allow an attacker to design a malicious fake ... Read More

#TripwireBookClub – Serious Cryptography

Welcome to the second installment of #TripwireBookClub, where we look at Serious Cryptography, published by No Starch Press. This was a book I was interested in because I don’t spend a lot of time digging into crypto these days, and the book seemed like a good dive into the topic ... Read More

VERT Threat Alert: June 2018 Patch Tuesday Analysis

Today’s VERT Alert addresses Microsoft’s June 2018 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-782 on Wednesday, June 13th. In-The-Wild & Disclosed CVEs CVE-2018-8267 This code execution vulnerability exists in Internet Explorer’s scripting engine and relates to the handling of objects in ... Read More
Loading...