Security Weekly
Security Weekly NewsSubscribe
Vulnerability Management, Malware, Patch/Configuration Management

Pumpkin Spice, VMWARE, RoundCube, Apple, Big-IP, Oktapus, Aaran Leyland and More – SWN #337

Full Audio

View Show Index

Segments

1. Pumpkin Spice, VMWARE, RoundCube, Apple, Big-IP, Oktapus, Aaran Leyland and More – SWN #337

Pumpkin Spice, VMWARE, Winter Vivern, RoundCube, Apple, Big-IP, Oktapus, Aaran Leyland, and More on the Security Weekly News.

Hosts

Professor at Roger Williams University
  1. 1. VMware vCenter Flaw So Critical, Patches Released for End-of-Life Products
  2. 2. Firefox, Chrome Updates Patch High-Severity Vulnerabilities
  3. 3. Roundcube 0-day used to steal European government emails
  4. 4. Google Expands Its Bug Bounty Program to Tackle Artificial Intelligence Threats
  5. 5. F5 Issues Warning: BIG-IP Vulnerability Allows Remote Code Execution
  6. 6. Apple issued another patch to stop TriangleDB cyber snooping
  7. 7. Microsoft: 0ktapus Cyberattackers Evolve to ‘Most Dangerous’ Status
  8. 8. Amazon Ads rolls out generative AI for ad image composition
Cyber security lead EMEA at Defence
  1. 1. The US cybersecurity agency CISA and the Department of Health and Human Services (HHS) on Wednesday released cybersecurity resources for healthcare and public health (HPH) organizations.

    https://www.cisa.gov/topics/cybersecurity-best-practices/healthcare

    These entities heavily rely on digital technologies to store personal and medical information, perform medical procedures, and communicate with patients, which increases their attack surface, but often face challenges in finding the necessary resources to invest in cybersecurity.

    The newly released cybersecurity healthcare toolkit is meant to help organizations at every level build their cybersecurity foundation and implement more advanced tools to improve their defenses.

    The toolkit details cyber hygiene steps that both organizations and individuals should take, provides an overview of the threat landscape, documents cybersecurity best practices, and provides a cybersecurity framework implementation guide.

    Furthermore, it provides organizations with risk assessment tools and information on recommended tools, such as vulnerability scanning services and CISA’s Known Exploited Vulnerabilities (KEV) catalog.

    The toolkit also recommends resources to help organizations strengthen their security stance, prevent ransomware attacks, access free cybersecurity services and tools, and implement incident response plans.

Related