The Department of Defense is probably the largest software development (and hardware development) organization in world but unlike say Microsoft or Cisco, almost all of the development is performed by third parties – the so called defense industrial base or DIB. It is also likely the number one target of nation state hackers since a […]
Continue reading → [DISPLAY_ACURAX_ICONS]Cisco: Critical Bug Allows Remote Takeover of Routers Cisco rated this bug 10 out of 10. For users of Cisco 4000 series ISRs, ASR 1000 series aggregation routers, 1000v cloud routers and integrated services virtual routers, an unauthenticated user can gain full control just by sending a malicious HTTP request. So yet another reminder that […]
Continue reading → [DISPLAY_ACURAX_ICONS]The U.S. Census wants people to respond online because it will save them money. They don’t have to transfer data from paper forms and they don’t have to send census workers out. From a pure finance standpoint, it makes perfect sense. The census will cost us about $15 billion this time around. And, from a […]
Continue reading → [DISPLAY_ACURAX_ICONS]Lenovo “Crapware” Allows Attacker to Compromise Any PC in 600 Seconds I am not going to get on my soapbox about why you should not buy a PC built by the Chinese government because I know people love their old IBM Thinkpads, but handle this issue no matter what. Apparently the Lenovo “Solutions” Center has […]
Continue reading → [DISPLAY_ACURAX_ICONS]Turns out that VxWorks is an extremely popular “real time” operating system or RTOS. RTOSes are used in devices that need to be able to respond to real time events, unlike, say Windows, Linux or MacOS. VxWorks can make sure that say, if an MRI machine is zapping someone with energy in order to create […]
Continue reading → [DISPLAY_ACURAX_ICONS]Remember That Vague Client Alert Earlier This Week? For those of you who are clients, you received an out of cycle client alert on Tuesday (they usually come out on Wednesday) providing a copy of the Homeland Security Alert on the Sodinokibi ransomware going after Managed Service Providers or MSPs. It now appears that the […]
Continue reading → [DISPLAY_ACURAX_ICONS]