by Scott Muniz | Jan 10, 2023 | Security, Technology
This article is contributed. See the original author and article here.
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To view the newly added vulnerabilities in the catalog, click on the arrow in the “Date Added to Catalog” column, which will sort by descending dates.
Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known CVEs that carry significant risk to the federal enterprise. BOD 22-01 requires FCEB agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.
Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the Catalog that meet the specified criteria.
by Contributed | Jan 10, 2023 | Technology
This article is contributed. See the original author and article here.
Microsoft UK
University Cloud Challenge 2023
Launches at the Microsoft London Reactor
Friday 27th Jan 2023
This is a face to face (In person) full day event for students who are interested in developing digital capabilities with the most in-demand technologies to accelerate their career.
The day will be packed with demos and activities including hands on Hololens activities, how to rock your LinkedIn profile and keynotes from early-in-career and senior leadership. We will also be providing an initial instructor-led session focused on the AI Fundamentals.
Agenda – Register NOW
10.30 – 11.00: Arrival / Tea / Coffee / Breakfast
11.00 – 11.20: Welcome and mini keynote from Liam Hampton
11.20 – 12.50: Getting Started with AI Fundamentals with Andrew Bettany
12.50 – 13.45: Lunch
13.45 – 14.15: Launch of the University Cloud Challenge
14.15 – 15.00: Rock your LinkedIn Profile with Claudia Costea
15.00 – 15.30: Augmented Reality Keynote with Alex Karim
15.30 – 16.00: Networking and Pizza
Click here for the OFT (Outlook Invite) for this event to share with your students
Register for the University Cloud Challenge Launch eventMicrosoft Reactor LondonFriday 27th Jan
Microsoft Learn Student Community Leader Become a Student Ambassador
Amplify your impact and establish yourself as a mentor and leader in your community while developing the technical skills and emotional intelligence you need to succeed.
Did you know that students with a Microsoft Professional Certification on their LinkedIn profile are 2.4x more likely to be hired?
See more details at Degree + Digital Certification for Job Success.
by Scott Muniz | Jan 10, 2023 | Security, Technology
This article is contributed. See the original author and article here.
CISA released two Industrial Control Systems (ICS) advisories on January 10, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations:
by Contributed | Jan 9, 2023 | Technology
This article is contributed. See the original author and article here.
Updates to Azure SQL Database, SQL Server, Reporting Services, and Analysis Services Management Packs are available (7.0.42.0). You can download the MPs from the links below. Majority of the changes are based on your direct feedback. Thank you.
Download Microsoft System Center Management Pack for Azure SQL Database from Official Microsoft Download Center
Download Microsoft System Center Management Pack for SQL Server from Official Microsoft Download Cen…
Download Microsoft System Center Management Pack for SQL Server Analysis Services from Official Micr…
Download Microsoft System Center Management Pack for SQL Server Reporting Services from Official Mic…
There are a lot of new features as well as some bug fixes in these MPs. You can find the full list by following the links below. Some of the bigger additions are:
- Support for SQL Server 2022
- Custom monitoring capability which allows creation of monitors and performance rules (SQL MP)
The operations guides for all SQL Server family of management packs now live on learn.microsoft.com. This unifies the content viewing experience for the user as the rest of the SCOM and SQL Server documentation is already there. Furthermore, it allows us to present you with the most up to date and accurate content online. The link to the operation guide for each MP can be found on the MP download page. Here are the links that show what’s new in these MPs:
Features and Enhancements in Management Pack for Azure SQL Database
Features and Enhancements in Management Pack for SQL Server
Features and Enhancements in Management Pack for SQL Server Analysis Services
Features and Enhancements in Management Pack for SQL Server Reporting Services
by Contributed | Jan 8, 2023 | Technology
This article is contributed. See the original author and article here.
Today, I worked on a service request that your customer is facing the following error message: During handling of the above exception, another exception occurred: Traceback (most recent call last): File “src/pymssql/_pymssql.pyx”, line 653, in pymssql._pymssql.connect pymssql._pymssql.OperationalError: (20009, b’DB-Lib error message 20009, severity 9:nUnable to connect: Adaptive Server is unavailable or does not exist (servername.database.windows.net)nNet-Lib error during Connection timed out (110)nDB-Lib error message 20009, severity 9:nUnable to connect: Adaptive Server is unavailable or does not exist (servername.database.windows.net)nNet-Lib error during Connection timed out (110)n’)
It is a python application using pymssql library running in Ubuntu 18.04. Our customer reported that previous connections were fine and this issue suddenly happened.
After checking the port 1433 and redirection ports in Network Security Groups we didn’t see any issue.
To check if the ports are available from this machine we ran the command telnet servername.database.windows.net 1433 and we saw that is not possible to connect.
The IP reported is 10.10.1.25. This IP looks like a private link but checking the private link the IP has dynamically changed to 10.10.1.26. In this situation, we checked the DNS server and Local DNS for Private Link and everything is fine, so the next action was to review if we have any configuration in the hosts file of Linux. We found that they have this configuration in their file.
Changing the value of /etc/host file from 10.10.1.25 to 10.10.1.26 everything was started to work correctly and we suggested to discuss with their IT Security team to check why this situation happened or change the private link to static.
Enjoy!
Recent Comments