Highlights and Updates

International Telecommunication Union (ITU) is organizing the Fifth ITU-ALERT - Applied learning for Emergency Response Teams (ALERT) international cyber drill for Africa Region, from 18th 21st November 2019, Kampala Uganda

Thursday, 14th November 2019

International Telecommunication Union (ITU)is organizing the Fifth ITU-ALERT - Applied learning for Emergency ResponseTeams (ALERT) international cyber drill for Africa Region, from 18th 21stNovember 2019 that will be held in Kampala, Uganda, at the kind invitation ofUganda Communications Commission.

This event will be organized by theTelecommunication Development Bureau (BDT) of the InternationalTelecommunication Union (ITU), and hosted by Uganda Communications commission. Read More

Magento Warns E-Commerce Sites to Upgrade ASAP to Prevent Attacks

Wednesday, 13th November 2019
The popular e-commerce platform Magento is urging web administrators to install its latest security update in order to defend against malicious attacks in the wild that could exploit a critical remote code-execution vulnerability.

Microsoft Patches IE Zero-Day Among 74 Vulnerabilities

Wednesday, 13th November 2019

The November Patch Tuesday update fixed 13 critical flaws, including a zero-day bug in Internet Explorer.

Patch Tuesday is back once again, bringing with it 74 security fixes, 61 of which are classified as Important and 13 as Critical, including one Internet Explorer bug under active attack.

Microsoft today released fixes for CVEs across Windows, Internet Explorer, Microsoft Edge, Office and Office 365, ChakraCore, Exchange Server, Open Source Software, and Visual Studio.

Google Releases Security Updates for Chrome

Thursday, 31st October 2019

Google has released Chromeversion 78.0.3904.87 for Windows, Mac, and Linux. This version addressesvulnerabilities that an attacker could exploit to take control of an affectedsystem. One of these vulnerabilities (CVE-2019-13720) was detected in exploitsin the wild.

We encourage users andadministrators to review the Chrome Release and apply the necessary updates.

 

Apple Releases Security Updates

Tuesday, 29th October 2019

Apple has released securityupdates to address vulnerabilities in multiple products. An attacker couldexploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and InfrastructureSecurity Agency (CISA) encourages users and administrators to review the Applesecurity pages for the following products and apply the necessary updates:

  • iTunes 12.10.2 for Windows
  • iCloud for Windows 11.0
  • iCloud for Windows 7.15
  • macOS Catalina 10.15.1 formacOS Catalina 10.15, Security Update 2019-001, and Security Update 2019-006
  • watchOS 6.1 for Apple Watch
  • watchOS 5.3.3
  • Safari 13.0.3
  • iOS 13.2 and iPadOS 13.2
  • iOS 12.4.3

Samba Releases Security Updates

Tuesday, 29th October 2019

The Samba Team has released security updates toaddress vulnerabilities in multiple versions of Samba. An attacker couldexploit some of these vulnerabilities to obtain sensitive information.

We encourage users and administrators toreview the Samba Security Announcements for CVE-2019-10218, CVE-2019-14833, andCVE-2019-14847 and apply the necessary updates and workarounds.

ISC Releases Security Advisories for BIND

Thursday, 17th October 2019

The Internet SystemsConsortium (ISC) has released security advisories that address vulnerabilitiesaffecting multiple versions of ISC Berkeley Internet Name Domain (BIND). Aremote attacker could exploit one of these vulnerabilities to obtain sensitiveinformation.

We encourage users and administrators toreview the ISC advisories for CVE-2019-6475 and CVE-2019-6476 for moreinformation and to apply the necessary updates and workarounds.

VMware Releases Security Update for Harbor Container Registry for PCF

Wednesday, 16th October 2019

VMware has released asecurity update to address a vulnerability affecting Harbor Container Registryfor Pivotal Cloud Foundry (PCF). An attacker could exploit this vulnerabilityto take control of an affected system.

We encourage users and administrators toreview VMware Security Advisory VMSA-2019-0016 and apply the necessary update.

Microsoft Re-Releases Security Updates

Thursday, 3rd October 2019

Microsoft has re-released security updates to address a vulnerability in Microsoft software. A remote attacker could exploit this vulnerability to take control of an affected system. Updates are now available automatically via Windows Update or Windows Server Update Services.

We encourage users and administrators to review Microsoft Security Advisory for CVE-2019-1367 and apply the necessary updates.

Cisco Releases Security Updates

Thursday, 3rd October 2019

Cisco has released securityupdates to address vulnerabilities affecting multiple Cisco products. A remoteattacker could exploit some of these vulnerabilities to take control of anaffected system.

We encourage users and administrators toreview the Cisco Event Response page and apply the necessary updates.