Computer Safety & News

The following TECH TARGET article outlines NIST recommendations for corporate & government users.  The link for the huge 100MB guide of 456 pages is also noted below: http://searchsecurity.techtarget.com/answer/Ransomware-recovery-methods-What-does-the-NIST-suggest?src=5727487 Ransomware maliciously encrypts all of a victim’s documents and files so that they can’t decrypt them. To help enterprises with ransomware recovery, the NIST recommends corruption testing, […]

As SANS ISC shares, webmasters should ensure Apache Struts CVE-2017-5638 is patched, as attacks are actively circulating.  Vulnerable websites may be compromised in these security attacks. https://isc.sans.edu/forums/diary/Scanning+for+Apache+Struts+Vulnerability+CVE20175638/23479/ https://cwiki.apache.org/confluence/display/WW/S2-052 https://isc.sans.edu/forums/diary/Critical+Apache+Struts+2+Vulnerability+Patch+Now/22169/ Over the past two weeks, I have noticed several attempts against my honeypot looking to exploit CVE-2017-5638 Apache Struts2 vulnerability that look very similar to this […]