VMware Releases Security Update for Tanzu Application Service for VMs

by | Nov 12, 2021 | Security, Technology

This article is contributed. See the original author and article here.

VMware has released a security update to address a vulnerability in Tanzu Application Service for VMs. A remote attacker could exploit this vulnerability to cause a denial-of-service condition.

CISA encourages users and administrators to review VMware Security Advisory VMSA-2021-0026 and apply the necessary update.

CISA Releases Advisory on Vulnerabilities in Multiple Data Distribution Service Implementations 

by | Nov 12, 2021 | Security, Technology

This article is contributed. See the original author and article here.

CISA has released an Industrial Control Systems Advisory (ICSA) related to a public report detailing vulnerabilities found in multiple open-source and proprietary Object Management Group (OMG) Data-Distribution Service (DDS) implementations. Successful exploitation of these vulnerabilities could result in denial-of-service or buffer-overflow conditions, which may lead to remote code execution or information exposure.

CISA encourages users and administrators to review ICSA-21-315-02: Multiple Data Distribution Service (DDS) Implementations and apply the necessary updates as quickly as possible.

Palo Alto Networks Release Security Updates for PAN-OS

by | Nov 12, 2021 | Security, Technology

This article is contributed. See the original author and article here.

Palo Alto Networks has released security updates to address a vulnerability affecting PAN-OS firewall configurations with GlobalProtect portal and gateway interfaces. These updates address a vulnerability that only affects old versions of PAN-OS (8.1.16 and earlier). An unauthenticated attacker with network access could exploit this vulnerability to take control of an affected system.

CISA encourages users and administrators to review Palo Alto Security Advisory for CVE-2021-3064 and apply the necessary updates or workarounds.

VMware Releases Security Advisory

by | Nov 11, 2021 | Security, Technology

This article is contributed. See the original author and article here.

VMware has released a security advisory to address a privilege escalation vulnerability in vCenter Server and Cloud Foundation. An attacker could exploit this vulnerability to take control of an affected system.

CISA encourages users and administrators to review VMware Security Advisory VMSA-2021-0025 and apply the necessary workaround.  

Looking for alternatives for your holiday shopping?

Looking for alternatives for your holiday shopping?

by | Nov 10, 2021 | Security

This article was originally posted by the FTC. See the original article here.

ideas for skipping problems shopping for the holidays

You’ve probably heard: this holiday season, it might be harder to find the gifts you’re looking for. So, many of us might be looking for alternatives, like buying gifts locally — or maybe from online marketplaces or sites you find through your social media accounts, online ads, or by searching online. If that might be you heading online, here are some things you can to do to avoid a scam or negative experience:

  • Check the rules about refunds and returns, and what happens if there’s a problem. Does the site have processes to help you get a refund if you don’t get exactly what was advertised or never get the item?
  • Make sure they let you pay with a safe payment method. For example, credit cards have legal protections, or a secure online payment system can protect you in case there’s a problem. If someone tells you to pay with a wire transfer, gift cards, or cryptocurrency, stop and find another seller. That’s how scammers tell you to pay.
  • Don’t buy from anyone who wants you to pay outside the marketplace’s payment system. If you do, you’ll lose any protection the site offers, and you probably won’t get the item or a refund.
  • Find out other people’s experiences. Search online for the site’s name with words like “complaint” or “scam,” and check to see if any well-known websites have credible and impartial reviews of the marketplace or the seller.
  • Look for pictures of the actual item and read the description of its condition and location.

What if something still goes wrong? Try to work out problems with the seller. If that doesn’t work, report them to the marketplace. If you paid by credit or debit card, file a dispute with your credit or debit card company. Read What To Do if You Were Scammed for more on what to do if you paid a scammer.

And report fraud, scams, or bad business practices to the FTC at ReportFraud.ftc.gov.

Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.

Microsoft Releases November 2021 Security Updates

by | Nov 9, 2021 | Security, Technology

This article is contributed. See the original author and article here.

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review Microsoft’s November 2021 Security Update Summary and Deployment Information and apply the necessary updates.