Good Morning wb_sunny

Welcome user! NYC Geeks is the premier computer repair and technology service provider for homes and businesses in the New York metropolitan area.

Request Support live_help
Technology News view_quilt
Security Alerts https
  • Juniper Networks Releases Security Updates:
    Original release date: April 9, 2020

    Juniper Networks has released security updates to address multiple vulnerabilities in various Juniper products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Juniper Security Advisories webpage and apply the necessary updates or workarounds.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Mozilla Releases Security Updates for Firefox, Firefox ESR:
    Original release date: April 8, 2020

    Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Mozilla Security Advisories for Firefox 75 and Firefox ESR 68.7 and apply the necessary updates.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Google Releases Security Updates:
    Original release date: April 8, 2020

    Google has released Chrome version 81.0.4044.92 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary updates.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Mozilla Patches Critical Vulnerabilities in Firefox, Firefox ESR:
    Original release date: April 3, 2020

    Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit these vulnerabilities to take control of an affected system. These vulnerabilities have been detected in exploits in the wild.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Mozilla’s security advisory for Firefox 74.0.1 and Firefox ESR 68.6.1 and apply the necessary updates.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing:
    Original release date: April 2, 2020

    The Federal Bureau of Investigation (FBI) has released an article on defending against video-teleconferencing (VTC) hijacking (referred to as “Zoom-bombing” when attacks are to the Zoom VTC platform).  Many organizations and individuals are increasingly dependent on VTC platforms, such as Zoom and Microsoft Teams, to stay connected during the Coronavirus Disease 2019 (COVID-19) pandemic. The FBI has released this guidance in response to an increase in reports of VTC hijacking.

    The Cybersecurity and Infrastructure Security Agency encourages users and administrators to review the FBI article as well as the following steps to improve VTC cybersecurity:

    • Ensure meetings are private, either by requiring a password for entry or controlling guest access from a waiting room.
    • Consider security requirements when selecting vendors. For example, if end-to-end encryption is necessary, does the vendor offer it?
    • Ensure VTC software is up to date. See Understanding Patches and Software Updates.

    CISA also recommends the following VTC cybersecurity resources:

    This product is provided subject to this Notification and this Privacy & Use policy.

  • MS-ISAC Releases Advisory on DrayTek Devices:
    Original release date: April 1, 2020

    The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory regarding two vulnerable command injection points in DrayTek devices (CVE-2020-8515). An attacker could exploit these vulnerabilities to take control of an affected system. These vulnerabilities were detected in exploits in the wild.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review MS-ISAC Advisory 2020-043 and the DrayTek Security Advisory for CVE-2020-8515 and apply the necessary updates and mitigations.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Google Releases Security Updates for Chrome:
    Original release date: April 1, 2020

    Google has released Chrome version 80.0.3987.162 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary updates.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Apple Releases Security Updates:
    Original release date: March 25, 2020

    Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apple security pages for the following products and apply the necessary updates:

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Adobe Releases Security Update for Creative Cloud Desktop Application:
    Original release date: March 25, 2020

    Adobe has released a security update to address a vulnerability in Creative Cloud Desktop Application. An attacker could exploit this vulnerability to take control of an affected system.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Adobe Security Bulletin APSB20-11 and apply the necessary update.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • Microsoft RCE Vulnerabilities Affecting Windows, Windows Server:
    Original release date: March 23, 2020

    Microsoft has released a security advisory to address remote code execution vulnerabilities in Adobe Type Manager Library affecting all currently supported versions of Windows and Windows Server operating systems. A remote attacker can exploit these vulnerabilities to take control of an affected system. Microsoft is aware of limited, targeted attacks exploiting these vulnerabilities in the wild.

    The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft Advisory ADV200006 and the CERT Coordination Center (CERT/CC) Vulnerability Note VU#354840 for more information and apply the necessary mitigations until patches are made available.

    This product is provided subject to this Notification and this Privacy & Use policy.

  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • :
  • Security Alerts