Deep Security 10.1 – What’s New?

Trend Micro has released Deep Security 10.1 and here is the list of some of what is new. Identity provider support via SAML 2.0. Supported identity providers include Active Directory Federation Services (ADFS), Okta, PingOne, and Shibboleth. Now there is no longer a...

Microsoft Windows LNK CVE-2017-8464

Microsoft Windows LNK CVE-2017-8464. This is not the first time a LNK vulnerability has come around and caused issues for Windows machines. Probably will not be the last either. A patch is available as part of Microsoft “Patch Tuesday” for this and the...

WannaCry (CVE-2017-0145) Detect with Metasploit

So by now everyone should have heard of WannaCry and all the variants. Here is a good rundown on https://en.wikipedia.org/wiki/WannaCry_ransomware_attack. It stems from tools being made available that the NSA used in exploiting holes in the Windows...

Apache Struts 2 (CVE-2017-5638)

Apache Struts 2 Vulnerability (CVE-2017-5638) On 3/6/2017 a vulnerability was found in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1. Essentially it mishandles the upload from the parser and could allow remote attackers to execute commands from the...

Apple Mesh Wireless

Apple Mesh Wireless So if you are following home networking trends you will notice things like the Netgear Orbi, Google Wifi, Luma, eero and others hitting the market as “mesh” home networks. This is different from the old/current extenders you may be...