Blog

RSS Blog

  • Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution – PATCH: NOW January 31, 2025
    Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on […]
    blogmirnet
  • Tax-Related Phishing Scams Now Deliver Malware January 31, 2025
    Last week, the NJCCIC reported increased phishing attempts targeting NJ state employees by impersonating the IRS. Proofpoint analysts noted a rise in tax-themed phishing campaigns, particularly as tax deadlines approach in the US and the UK. Likewise, these campaigns were also observed targeting NJ state employees. These phishing attempts typically impersonate government or financial organizations […]
    blogmirnet
  • Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution – PATCH NOW January 31, 2025
    Multiple vulnerabilities have been discovered in Apple products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install […]
    blogmirnet
  • Multiple Vulnerabilities in SimpleHelp RMM Could Allow for Arbitrary Code Execution – PATCH NOW January 31, 2025
    Multiple vulnerabilities have been discovered in SimpleHelp RMM that could allow for arbitrary code execution. SimpleHelp is a popular remote access software. Successful exploitation of the most severe of these vulnerabilities when chained together could allow for remote code execution in the context of the system. Depending on the privileges associated with the system, an […]
    blogmirnet
  • Recommendations for Key-Encapsulation Mechanisms | Draft SP 800-227 is Available for Comment January 31, 2025
    The initial public draft of NIST Special Publication (SP) 800-227, Recommendations for Key-Encapsulation Mechanisms, is now available for public comment. NIST recently published Federal Information Process Standard (FIPS) 203, Module-Lattice-Based Key-Encapsulation Mechanism Standard, to update its cryptographic standards with an algorithm designed to provide protection from quantum attacks. In addition, NIST will select one or […]
    blogmirnet
  • NIST Proposes to Revise SP 800-38B, “CMAC” and SP 800-38C, “CCM January 31, 2025
    In June 2024, NIST’s Crypto Publication Review Board initiated a review of the following publications: In response, NIST received public comments on SP 800-38B and SP 800-38C.  NIST proposes to revise both publications. The main technical changes would be the following: NIST would also consider other technical changes that were suggested in the public comments, in addition to editorial improvements. Submit your […]
    blogmirnet
  • A Vulnerability in SonicWall Secure Mobile Access (SMA) 1000 Series Appliances Could Allow for Remote Code Execution – PATCH NOW January 27, 2025
    A vulnerability has been discovered in SonicWall Secure Mobile Access (SMA) 1000 Series Appliances which could allow for remote code execution. SonicWall Secure Mobile Access (SMA) is a unified secure access gateway used by organizations to provide employees access to applications from anywhere. Successful exploitation of this vulnerability could allow for remote code execution. Depending […]
    blogmirnet
  • CISO Digest | Debut Issue Microsoft. January 22, 2025
      CISO Digest Welcome to the first edition of CISO Digest, a bimonthly publication, delivering expert insights, industry trends, cutting-edge research, and essential security knowledge to empower Security Leaders and their teams stay ahead in the rapidly evolving threat landscape.   Featured Stories & Insights CISO Executive Summary: Microsoft Digital Defense Report (MDDR) The CISO […]
    blogmirnet
  • Registration Open | Microsoft Security Public Webinars January 22, 2025
    Register now > January 23 – Microsoft Defender for Office 365 | Improved SecOps Efficiency with New Detections, Advanced Hunting, and Response Flows January 28 – Azure Network Security | Azure WAF Bot Protection: Features, Benefits, and Best Practices January 28 – Microsoft Entra ID Protection – Detect Password Spray and Attacker in the Middle […]
    blogmirnet
  • Microsoft.Source Newsletter | Issue 67 January 22, 2025
    Microsoft AI TourJoin experts, industry leaders and peers to explore the ways AI can drive growth and create lasting value. Multiple cities and dates available.Featured Announcing a free GitHub Copilot for Visual Studio Code > Get code suggestions, ask Chat questions, search the web or your code, and edit multiple files at once. Burke Holland […]
    blogmirnet
View All Blog Posts
Whether your team wants to study SharePoint or needs to learn Excel, GSAtrain has a convenient classroom setting with industry-certified instructors to lead your training. Creating opportunities to customize courseware.
Explore
Useful links
Contact info
Copyright 2022 GSAtrain LLC. All Rights Reserved