Have an Android phone?
Do this: Make sure to apply the latest security updates.
Why: 50 security issues were addressed in Google's October security update for Android operating systems. Two (2) of which can result in privilege escalation scenarios for attackers.
Additional Info: https://source.android.com/security/bulletin/2020-10-01
Using Cisco WebEx, Video Surveillance, or Identity Services Engine?
Do this: Make sure to apply the latest Cisco security patches.
Why: Cisco released patches for three (3) high-severity vulnerabilities in their Webex, Video Surveillanec 8000 Series IP Cameras, and Identity Services Engine that if left unpatched, could result in arbitrary code execution.
Additional Info: https://threatpost.com/cisco-webex-security-camera-flaws/159969/
Using iCloud or Other Apple Sites and Services?
Do this: Be careful. Watch out for phishing emails or other suspicious activity related to iCloud, the Apple Distinguished Educators site, Apple Books, et at.
Why: Five researches spent three months of quarantine hammering Apple sites and services, under the bug bounty program, and have earned almost $300K for discovering various security vulnerabilities in Apple’s sites. Apple is working through the list, quickly correcting these findings (55 in total) in hours or days.
Additional Info: More details, Proof of Concept Videos, and more... https://thehackernews.com/2020/10/apple-security.html
Using Microsoft Azure?
Do this: Watch for phishing emails related to recent security issues with the Azure App Service and Azure Portal administration.
Why: In June, security researches submitted two security flaws within the Azure App Service and the Azure administration portal that could allow an attacker to take over an account or host phishing pages targeting admins within the Azure portal.
Additional Info: More details, Proof of Concept Videos, and more... https://thehackernews.com/2020/10/microsoft-azure-vulnerability.html
Send Us Your Comments
What did you think of this article? Send us a note to let us know what you liked, would like to see more of, or what we can do better. And don't be surprised if we reach back out with a small 'thank you' gift for your feedback.
