A Critical Bug with Fortinet PSIRTs
Fortinet has released updates that address critical bugs. We recommend all FortiGate systems be upgraded to the latest released version as soon as possible. FortiOS – Format String Bug in fgfmd (FG-IR-24-029) Summary A use of externally-controlled format string...
Critical VMware vCenter Server and VMware Cloud Foundation Issue
Attention all users of VMware vCenter Server and VMware Cloud Foundation! We have important news to share regarding a recent issue that may affect your operations. Please read on to understand the situation and what steps you should take. You are affected by this...
How Technical Debt can Hurt your Business
How Technical Debt can Hurt your Business Technical Debt is an accumulation of unsupported technology that presents unnecessary challenges. It significantly increases the risk an organization faces when working towards its goals. Software not being updated with the...
Are you Still Protected? How to Workaround Microsoft Exchange’s 0-day Vulnerability!
Microsoft has confirmed a 0-day (response in progress) vulnerability to their Exchange Server software for versions 2013, 2016, and 2019. Customers using Exchange Online that never used Exchange onsite or fully completed their migration to Exchange Online (no hybrid...
Xiologix Wins an Award for Top Emerging Managed Security Services Company for 2022 by Cyber Security Review
Xiologix is pleased to announce they were awarded a Top Emerging Managed Security Services Company in 2022 by Cyber Security Review. As a white-glove managed security service provider, they give their customers reliable IT services to meet their technological needs....
How to Correct the newest Microsoft Exchange bug!
There is a new bug for Exchange 2016/2019 onsite servers that stops all mail flow due to a data storage issue. There is no patch from Microsoft yet but there is a workaround, which will disable the Exchange malware scanning capabilities. An update will likely take at...
How Java Might Infect Your Computer!
Another day, another 0-day (brand new, limited mitigation) vulnerability. This time, Java installations are the target. This is a developing situation, and you can find additional information here: https://nvd.nist.gov/vuln/detail/CVE-2021-44228 What happened? Meet...
Be Warned of the Significant Risk of Printjack Attacks
Okay, I can’t believe we are still discussing this: Do not put your printers directly on the Internet! https://www.bleepingcomputer.com/news/security/researchers-warn-of-severe-risks-from-printjack-printer-attacks/ These researchers make an excellent point...
Critical VMware vCenter Security Vulnerability
A security vulnerability CVE-2021-22005 was discovered yesterday. This vulnerability affects VMware vCenter servers running all versions of 6.7 and all versions of 7.0 before 7.0U2c build 18356314. This is a critical vulnerability, rated 9.8 out of 10! There is no...
Microsoft Vulnerability: Internet Explorer MSHTML Remote Code
Microsoft Vulnerability Internet Explorer MSHTML Remote Code Microsoft has made public a vulnerability within Internet Explorer version 11 on Windows 10 and Windows Server 2019. It is not as widely used with Edge, Firefox, and Chrome (to name a few web browsers), but...
