brightness_2 Good Evening user! NYC Geeks is a technology service provider in the New York City metropolitan area with over 25 years of experience!

build Let us Solve IT!

We are industry professionals with expertise in computer technology and how it integrates into the world around us. With decades of experience in a variety of industries and a vast intelligence network, our goal is to deliver efficient, reliable IT system administration solutions.

contact_mail Contact Us
view_quilt Technology News
https Security Alerts
  • Cisco Releases Advisories for Multiple Products :
    Original release date: January 21, 2021

    Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.

    CISA encourages users and administrators to review the following Cisco Advisories and apply the necessary updates:

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Drupal Releases Security Updates:
    Original release date: January 21, 2021

    Drupal has released security updates to address a vulnerability affecting Drupal. An attacker could exploit this vulnerability to take control of an affected system.

    CISA encourages users and administrators to review Drupal Advisory SA-CORE-2021-001 and apply the necessary updates or mitigations.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • CERT/CC and CISA Report Multiple Vulnerabilities in Dnsmasq:
    Original release date: January 21, 2021

    CISA and the CERT Coordination Center (CERT/CC) are aware of multiple vulnerabilities affecting Dnsmasq version 2.82 and prior. Dnsmasq is a widely-used, open-source software that provides Domain Name Service forwarding and caching and is common in Internet-of-Things (IoT) and other embedded devices. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

    CISA encourages users and vendors of IoT and embedded devices that use Dnsmasq to review CERT/CC VU#434904 and CISA ICSA-21-019-01 21 for more information and to apply the necessary update. Refer to vendors for appropriate patches, when available.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Google Releases Security Updates for Chrome:
    Original release date: January 21, 2021

    Google has released Chrome version 88.0.4324.96 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

    CISA encourages users and administrators to review the Chrome Release and apply the necessary updates.

     

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Oracle Releases January 2021 Security Bulletin:
    Original release date: January 21, 2021

    Oracle has released its Critical Patch Update for January 2021 to address 329 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

    CISA encourages users and administrators to review the Oracle January 2021 Critical Patch Update and apply the necessary updates.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • NSA Releases Guidance on Encrypted DNS in Enterprise Environments  :
    Original release date: January 15, 2021

    The National Security Agency (NSA) has released an information sheet with guidance on adopting encrypted Domain Name System (DNS) over Hypertext Transfer Protocol over Transport Layer Security (HTTPS), referred to as DNS over HTTPS (DoH). When configured appropriately, strong enterprise DNS controls can help prevent many initial access, command and control, and exfiltration techniques used by threat actors.

    CISA encourages enterprise owners and administrators to review the NSA Info Sheet: Adopting Encrypted DNS in Enterprise Environments and consider implementing the recommendations to enhance DNS security.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Apache Releases Security Advisory for Tomcat :
    Original release date: January 15, 2021

    The Apache Software Foundation has released a security advisory to address a vulnerability affecting multiple versions of Apache Tomcat. An attacker could exploit this vulnerability to obtain sensitive information.   

    CISA encourages users and administrators to review the Apache security advisory for CVE-2021-24122 and upgrade to the appropriate version.  

    This product is provided subject to this Notification and this Privacy & Use policy.

  • RCE Vulnerability Affecting Microsoft Defender :
    Original release date: January 14, 2021

    Microsoft has released a security advisory to address a remote code execution vulnerability, CVE-2021-1647, in Microsoft Defender. A remote attacker can exploit this vulnerability to take control of an affected system. This vulnerability was detected in exploits in the wild.

    CISA encourages users and administrators to review Microsoft Advisory for CVE-2021-1647 and apply the necessary updates. 

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Cisco Releases Security Updates for Multiple Products:
    Original release date: January 14, 2021

    Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page.

    CISA encourages users and administrators to review the following Cisco Advisories and apply the necessary updates:

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Juniper Networks Releases Security Updates for Multiple Products:
    Original release date: January 14, 2021

    Juniper Networks has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to cause take control of an affected system.

    CISA encourages users and administrators to review the Juniper Networks security advisories page and apply the necessary updates.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • Security Alerts