Microsoft PowerShell 7 – targeted for January 2020 release

Uncategorized Comments Off on Microsoft PowerShell 7 – targeted for January 2020 release

https://redmondmag.com/articles/2019/10/29/powershell-7–january-2020-release.aspx

Microsoft is planning a “general availability” release of PowerShell 7 for production environments sometime in January 2020.   A “release candidate” version of PowerShell 7 is expected to arrive in December, and it’ll be “aligned with the .NET Core 3.1 final release,” he added.

Microsoft released .NET Core 3.0 back in September, but it ultimately will get consolidated. Microsoft has broader plans to create one unified .NET development platform, which will be called “.NET 5.” This unified .NET 5 platform is expected to appear sometime in November 2020.

PowerShell 7 itself is a consolidation of sorts. It’s aimed at replacing current Windows PowerShell 5.1 and PowerShell Core 6.x products, for instance. Microsoft has been working to ensure module compatibility with these past products in developing the PowerShell 7 product.

Microsoft – Experts on Demand security response teams implemented

Uncategorized Comments Off on Microsoft – Experts on Demand security response teams implemented

Microsoft has announced implementation of their new “Experts on Demand” security team service as follows:

https://redmondmag.com/articles/2019/10/28/microsoft-experts-on-demand-ga.aspx

https://www.microsoft.com/security/blog/2019/10/28/experts-on-demand-your-direct-line-to-microsoft-security-insight-guidance-and-expertise/

Microsoft on Monday announced that its “experts on demand” security consulting service, part of its Threat Experts service, has reached the “general availability” (GA) commercial-release stage.

The experts-on-demand capability lets an organization’s security team send questions to Microsoft about suspicious network activities. In response, Microsoft may allow “the SOC to have a line of communication and consultation with Microsoft Threat Experts,” per the announcement. In this case, by “Threat Experts,” Microsoft literally means its security personnel, who get involved in discussing the incident.

Apple – Critical Security Updates October 2019

Uncategorized Comments Off on Apple – Critical Security Updates October 2019

https://www.us-cert.gov/ncas/current-activity/2019/10/30/apple-releases-security-updates

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apple security pages for the following products and apply the necessary updates:

FTP – Best Security and Privacy practices October 2019

Uncategorized Comments Off on FTP – Best Security and Privacy practices October 2019

https://www.us-cert.gov/ncas/current-activity/2019/10/29/ftc-provides-tips-warding-hackers

The Federal Trade Commission (FTC) has released an article with tips on how protect your personal information from being stolen by hackers. In support of National Cybersecurity Awareness Month (NCSAM), FTC provides recommendations on how to safeguard phones, computers, accounts, and personally identifiable information.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages consumers to review the FTC article and the following additional resources for more information:

Office 365 – new group automated renewal policy October 2019

Uncategorized Comments Off on Office 365 – new group automated renewal policy October 2019

https://redmondmag.com/articles/2019/10/28/office-365-groups-automatic-renewals.aspx

Microsoft on Monday announced new modified group expiration controls for Office 365, allowing groups to automatically renew if there’s been user activity.  The new policy, now at “general availability,” slightly alters the current Office 365 groups expiration policy that was established last year within the Azure Active Directory Admin Center portal.

Security – New Secured-Core PCs prevent malware at firmware level

Uncategorized Comments Off on Security – New Secured-Core PCs prevent malware at firmware level

https://redmondmag.com/articles/2019/10/22/micrososft-secured-core-pcs.aspx

Microsoft and its hardware partners on Monday described new “Secured-core” PCs, which add protections against firmware-based attacks.  Secured-core PCs combine hardware and software protections to ensure that so-called “bootkits” or “rootkits” don’t compromise a system at the boot-up stage. Such malware typically doesn’t get detected by anti-virus solutions.

 

Malware – Emotet Trojan warning October 2019

Uncategorized Comments Off on Malware – Emotet Trojan warning October 2019

The Australian Cyber Security Centre (ACSC) has released an advisory for widespread Emotet malware campaign which typically spreads thru infected email attachments.

https://www.us-cert.gov/ncas/current-activity/2019/10/25/acsc-releases-advisory-emotet-malware-campaign

 Emotet is a Trojan—commonly spread via malicious email attachments—that attempts to proliferate within a network by brute forcing user credentials and writing to shared drives.  Please see ACSC advisory and CISA’s Alert on Emotet Malware for more information.

Wireshark 3.0.6 – new release of network monitoring tool

Uncategorized Comments Off on Wireshark 3.0.6 – new release of network monitoring tool

https://www.wireshark.org/docs/relnotes/wireshark-3.0.6.html

What is Wireshark?Wireshark is the world’s most popular network protocol analyzer. It is used for troubleshooting, analysis, development and education.

What’s New — On macOS, Wireshark can now be installed by dropping Wireshark.app onto the Applications folder. The macOS installer now ships with Qt 5.12.5. It previously shipped with Qt 5.12.3.

Updated Protocol Support — AgentX, BT L2CAP, ERSPAN, GRE, IPv4, IS-IS, NAS 5GS, OpcUa, SNMP, and SRT

Getting Wireshark — Wireshark source code and installation packages are available from

https://www.wireshark.org/download.html

Smart phones – RCS and CCMI to improve texting on devices

Uncategorized Comments Off on Smart phones – RCS and CCMI to improve texting on devices

Verizon, AT&T, T-Mobile, and Sprint are working on ‘Cross-Carrier Messaging Initiative’ to simplify texting between all devices.  Traditional texting falls short of other messaging apps, but US carriers are collaborating on a new standard that aims to usher in next-generation features.

https://www.pcmag.com/news/371565/major-us-carriers-were-taking-over-rcs-rollout

Verizon, AT&T, T-Mobile, and Sprint issued a single press release laying out its strategy to replace SMS. The joint venture, known as the Cross-Carrier Messaging Initiative (CCMI), takes on Rich Communication Services (RCS). Built by the GSM Association, RCS unlocks access to an upgraded communication experience.

RCS enables features such as read receipts, a real-time typing indicator, and larger file attachments. Businesses, too, benefit by using RCS to directly communicate with their customers.

 

 

VMware – Critical Security updates October 2019

Uncategorized Comments Off on VMware – Critical Security updates October 2019

https://isc.sans.edu/forums/diary/VMware+Patch+Alert/25454/

Update Alert! Patches are out for VMware

VCSA (information disclosure in backups and restore)
https://www.vmware.com/security/advisories/VMSA-2019-0018.html
DOS issue in ESXi, Workstation and Fusion:
https://www.vmware.com/security/advisories/VMSA-2019-0019.html


© 2019 Computer Safety & News.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in