A weekly recap of pertinent security events you need to be aware of and can read in 7 seconds (or so...)
Using Adobe ColdFusion?
Do this: Apply the latest Adobe ColdFusion security updates.
Why: Adobe released an out-of-band security update to address a remote code execution (RCE) flaw found within its ColdFusion platform.
Additional Info: https://threatpost.com/adobe-critical-coldfusion-flaw-update/164946/
Using Cisco Small Business Routers?
Do this: Apply the latest round of Cisco security patches.
Why: Cisco System's RV132W ADSL2+ Wireless-N VPN and RV134W VDSL2 Wireless-AC VPN small business routers are vulnerable to a high-severity vulnerability. "If exploited, the flaw could allow a remote – albeit authenticated – attacker to execute code or restart affected devices unexpectedly."
Additional Info: https://threatpost.com/cisco-security-hole-small-business-routers/164859/
About the Author
Ryan Bradbury, CISSP, OSCP
Principal Consultant & Cofounder
As a founding partner and principal consultant at SEVN-X, Ryan employs his training, experience, and expertise in helping organizations assess and protect their information security assets as well as respond to cybersecurity events. Ryan’s skillset has been forged from an extensive amount of field work—across various verticals—serving in both strategic and tactical security roles. SEVN-X requires all of its team members to be experts in information security and that starts from the top down.