Good Morning wb_sunny

Welcome user! NYC Geeks is the premier computer repair and technology service provider for homes and businesses in the New York metropolitan area.

Request Support live_help
Technology News view_quilt
Security Alerts https
  • Global Threats to Information Systems:
    Original release date: June 21, 2018

    The advanced capabilities of organized hacker groups and cyber threat actors are an increasing global threat to information systems. Rising threat levels place more demands on cybersecurity personnel and network administrators to protect information systems. Protecting network infrastructure is critical to preserving the confidentiality, integrity, and availability of communication and services across an enterprise.

    Cyber campaigns—such as NotPetya—are examples of increasingly advanced threat actor activity. NotPetya coincided with a national holiday of the targeted nation. NCCIC recommends organizations remain vigilant and aware of potential malicious cyber activity ahead of upcoming national holidays, including Ukraine’s Constitution Day on June 28, 2018.

    NCCIC encourages users and administrators to review Securing Network Infrastructure Devices and the United Kingdom’s National Cyber Security Centre (NCSC) guidance on Internet Edge Device Security and implement the following recommendations:

    • Segregate networks and functions.
    • Limit unnecessary lateral communications.
    • Harden network devices.
    • Secure access to infrastructure devices.
    • Perform out-of-band network management.
    • Validate hardware and software integrity.

    This product is provided subject to this Notification and this Privacy & Use policy.


  • Cisco Releases Security Updates for Multiple Products:
    Original release date: June 20, 2018

    Cisco has released several updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

    NCCIC encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:


    This product is provided subject to this Notification and this Privacy & Use policy.


  • FTC, Partners Help Small Businesses Stop Scams:
    Original release date: June 18, 2018

    The Federal Trade Commission (FTC) has launched Operation Main Street, an effort with the Better Business Bureau (BBB) and law enforcement to educate small business owners on how to stop scams targeting their businesses. Accordingly, FTC released Scams and Your Small Business, a guide for businesses detailing how to avoid, identify, and report scams.

    NCCIC encourages business owners and other consumers to review the FTC article and NCCIC's Resources for Small and Midsize Businesses.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • North Korean Malicious Cyber Activity:
    Original release date: June 14, 2018

    The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have identified Trojan malware variants—referred to as TYPEFRAME—used by the North Korean government. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA.

    US-CERT encourages users and administrators to review Malware Analysis Report (MAR) 10135536-12 and the US-CERT page on HIDDEN COBRA - North Korean Malicious Cyber Activity for more information.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • ISC Releases Security Advisory for BIND:
    Original release date: June 13, 2018

    The Internet Systems Consortium (ISC) has released a security advisory that addresses a vulnerability affecting multiple versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit this vulnerability to obtain sensitive information.

    NCCIC encourages users and administrators to review the ISC Knowledge Base Article AA-01616 and apply the necessary workarounds.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • Intel Releases Security Advisory on Lazy FP State Restore Vulnerability:
    Original release date: June 13, 2018

    Intel has released recommendations to address a vulnerability—dubbed Lazy FP state restore—affecting Intel Core-based microprocessors. An attacker could exploit this vulnerability to obtain access to sensitive information.

    NCCIC encourages users and administrators to review Intel's Security Advisory INTEL-SA-00145, apply the necessary mitigations, and refer to software vendors for appropriate patches, when available.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • Apple Releases Security Update for Xcode:
    Original release date: June 13, 2018

    Apple has released a security update to address vulnerabilities in Xcode. An attacker could exploit one of these vulnerabilities to take control of an affected system.

    NCCIC encourages users and administrators to review Apple’s security page for Xcode 9.4.1 and apply the necessary update.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • Google Releases Security Update for Chrome:
    Original release date: June 13, 2018

    Google has released Chrome version 67.0.3396.87 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.

    NCCIC encourages users and administrators to review the Chrome Release page and apply the necessary update.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • Microsoft Releases June 2018 Security Updates:
    Original release date: June 12, 2018

    Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

    NCCIC encourages users and administrators to review Microsoft's June 2018 Security Update Summary and Deployment Information and apply the necessary updates.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • VMware Releases Security Update:
    Original release date: June 12, 2018

    VMware has released a security update to address a vulnerability in VMware AirWatch Agent. A remote attacker could exploit this vulnerability to take control of an affected system.

    NCCIC encourages users and administrators to review the VMware Security Advisory VMSA-2018-0015 and apply the necessary update.


    This product is provided subject to this Notification and this Privacy & Use policy.


  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • Security Alerts