Cyber Security News & Tips by Glenda R. Snodgrass for The Net Effect

August 16, 2022

Good morning, everyone!

This week’s critical vulnerabilities:

  • Critical fixes have been released for Cisco routers RV160, RV260, RV340, and RV345 Series Routers and also Cisco firewalls including Adaptive Security Appliance software, Adaptive Security Device Manager (ASDM), Cisco ASA-X and FirePOWER Services Software for ASA
  • A known vulnerability in Zimbra Collaboration is being actively exploited. A fix was released in May. Patch now, please.
  • Microsoft’s latest Patch Tuesday released fixes for more than 120 vulnerabilities
  • Critical fixes for the Device42 Asset Management Platform are now available
  • Patches were released this week for VMware vRealize Operations
  • Adobe released numerous patches last week for a variety of software products

Patch all the things!



USB Hygiene

A faithful reader of this newsletter emailed me last week, after reading Think before you plug it in!, to remind me that “it works both ways!” She’s right, and I haven’t talked about this in awhile, so here goes:

Have you noticed that USB charging stations are everywhere now? Airport lounges, restaurant waiting areas, and even in the base of the lamp in my hotel room last week! Why is this problem? Juice Jacking:

You’ve heard of credit card skimming at the gas pump, right? This is the mobile tech equivalent. What might seem like a benign, generic USB port or charging cable may be attached to a tiny device that installs malware on your phone, or worse, steals data off of your phone.

Seriously, you should think of USB charging stations as public toilets – but nobody is cleaning them!

How do you protect yourself? Carry your own charger with you, and use only standard electric outlets to charge, not a USB outlet. Or carry around a USB condom. Yep, that’s a thing.

Have a good week!

Remember, you can read past editions of this newsletter on our website, along with tons more information under the Resources tab.

Talk to you again soon!

Glenda R. Snodgrass

Glenda R. Snodgrass
grs@theneteffect.com
(251) 433-0196 x107
https://www.theneteffect.com
For information security news & tips, follow me!

Security Awareness Training Available Here, There, Everywhere!

Thanks to COVID-19, lots of things went virtual, including my employee Security Awareness Training. Live training made a comeback a few months ago, but many organizations are retreating. No worries. Wherever you and your employees may be, I can deliver an interesting and informative training session in whatever format you prefer.

Contact me to schedule your employee training sessions. They're fun! ☺

TNE. Cybersecurity. Possible.

Speak with an Expert

Contact

The Net Effect, L.L.C.
Post Office Box 885
Mobile, Alabama 36601-0885 (US)
phone: (251) 433-0196
fax: (251) 433-5371
email: sales at theneteffect dot com
Secure Payment Center

The Net Effect, LLC

The Net Effect is a CMMC-AB Registered Provider OrganizationRPO

Copyright 1996-2022 The Net Effect, L.L.C. All rights reserved. Read our privacy policy