February Updates 2019
Executive Summary
The Cyber Tech Cafe Managed Services (MyIT) continue to be an overwhelming success. It’s exciting to see organizations taking a proactive approach when it comes to their IT Infrastructure and it’s incredibly rewarding to hear those organizations comment about how “things just seem to work”.
A new version of our website / blogging software brings a new format to these posts, all the same content you know and love with a fresh coat of paint to hopefully make consumption more enjoyable and pleasing. As always, we welcome comments, feedback, concerns, etc.
News
- DC770 – Cyber Tech Cafe is a proud supporter and co-sponsor of the DC770 DEF CON group that meets monthly at 7:00pm ET at Jefferson’s restaurant in Cartersville on the first Tuesday of each month. More information is available at https://dc770.org . Our speaker for the February meeting is the world famous TBD.
- Tech News – Microsoft owned LinkedIn launched a live video streaming service (currently in invite-only Beta), Apple released a patch for a serious bug in FaceTime that allowed users to listen in before a call was connected, and Google announced its working on a new form of encryption called Adiantum aimed at bringing hardware encryption support to lower end devices.
Update Info
Microsoft
Microsoft reported a whopping 74 vulnerabilities, 21 of which were classified [by Microsoft] as CRITICAL with the remaining 41 rated important, moderate or low. This month we saw 1 Information Disclosure vulnerability reported in Internet Explorer 10 on all operating systems that is already being exploited in the wild, another 2 were already known previously (making exploitation more likely), and one specifically nasty vulnerability in DHCP with a CVSSv3 score of 9.8. So remember, all the cool kids update their systems.
Additional details on Windows Updates are available Here, Here, and Here.
Adobe
Adobe released four (4) bulletins this month, one in Flash Player, one in Acrobat / Reader and the other two in lesser known Adobe products.
Like Microsoft, Adobe (for the most part) now releases updates to their products on the second Tuesday of each month. Adobe will also release ‘out of band’ updates if necessary to address critical vulnerabilities in their products. Adobe products include Adobe Reader (for viewing PDF files), Adobe Flash Player (often used to watch videos, for interactive content like games, etc.), Adobe Shockwave and the Adobe Creative Suite (Photoshop, Illustrator, Acrobat, Lightroom, etc.).
Additional details are available from Adobe Here including links to download the update(s) and instructions for installation.
Java
The latest update for Java is (and forever will be) Version 8 Update 201, released on 15 January 2019.
Oracle announced at the beginning of 2019 that Java SE would no longer be free for commercial customers. For more information read our article here.
Security News
Does it seem like you’re receiving more really targeted scam telephone calls and emails lately? If so, it’s not your imagination and you’re not alone. As we lead more and more connected lives, posting more and more data to social media sites, organizations that we do business with and having our information traded by and between those organizations online, it’s getting easier and easier for threat actors to gather information on us that they can then use in social engineering attacks against us.
Check out the full article on Piratica.us to read more!
Piratica is a risk management firm. We work with client organizations to help them identify and understand the risks to their organizations so that those metrics can be incorporated into the organizations overall security strategy. We believe that the first step in any solution is to correctly and completely identify the problem. Additional information is available on our website, Facebook and Twitter or via our free email newsletter (signup available on our website here).
These updates will be automatically reviewed, approved and installed for MyIT Customers. If you would like more information about the Cyber Tech Cafe MyIT services for your business, please let us know. The Cyber Tech Cafe MyIT services are available in three different levels (Bronze, Silver and Gold) and can provide updates only (Bronze), updates and proactive network auditing and monitoring (Silver) or updates, proactive auditing and monitoring and up to 10 hours of priority support at a significantly discounted rate (Gold). Pricing is based on the number of physical locations, servers and workstations that you have.