If you already had plans to test and roll out the various Microsoft Windows and Server updates that came out today as a part of Microsoft’s Patch Tuesday, you probably want to move a bit quicker. Among the various bug fixes are a series of patches for a critical “wormable” vulnerability in Windows DNS Server, affecting all Windows Server versions dating back to Server 2003 … [Read more...]
Docker Host Root Vulnerability – Security Byte
A serious vulnerability in RunC—the primary container runtime for Docker, Kurbernetes, and more—allows a malicious container to run arbitrary code as root on the host. This is a pretty critical vulnerability, especially for anyone that offers public access to containers. Watch today’s quick, snowpocalypse video to learn more about this flaw, and go get the patch immediately if … [Read more...]
Prepare for Chrome Update – Daily Security Byte
Six month ago I warned you about upcoming changes in the way Google Chrome handles non-HTTPS sites. Today is the day for that update. Chrome users, watch today's video to know what to expect with the popular browser today, and why you might see "Not Secure" more often than you expect. Episode Runtime: 1:34 Direct YouTube … [Read more...]
March Patch Day Madness – Daily Security Byte
Last Tuesday, Microsoft and Adobe released all their security patches for March. The updates fix a ton of flaws in Windows, IE and Edge, Office, Adobe Flash, and much more. Some of Microsoft's updates continue to fix the Meltdown and Spectre chipset issues, and the Adobe updates fix some serious flaws in Flash player. If you use any of these products, you should patch … [Read more...]
Apache Struts RCE – Daily Security Byte
Apache Struts is an open source framework for developing Java web applications. It's also very popular, and used by many large organizations. Recently, a researcher found a serious vulnerability in Apache Struts that affects all the latest versions. Watch the video below for a quick summary, and if you use Struts, be sure to go download, test, and apply the proper update … [Read more...]