A zero-day vulnerability was discovered in Google Chrome 

A zero-day vulnerability was discovered in Google’s Chrome browser and an announcement was made by the company today. Please update your browser right now to negate the vulnerability. The vulnerability was discovered by Google’s Threat Analysis Group. Exploits are already being used already.  The built-in password manager is a potential target as well as access to sites you visit such as banks and social media accounts. Update right now via the Help > About Chrome menu options in the More menu accessed via the three vertical dots in the upper-right of the browser window. For more information search for CVE-2023-2033.

Read More

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

Microsoft published guidance on Monday for a recently discovered zero-day security flaw for which there is an exploit. The vulnerability is rated 7.8 out of 10 for severity on the CVSS vulnerability scoring system. The vulnerability exists in the Office suite that could be exploited to achieve code execution on affected systems.

The weakness was assigned the identifier CVE-2022-30190. Microsoft Office versions Office 2013, Office 2016, Office 2019, and Office 2021, as well as Professional Plus editions, are impacted. See Microsoft for guidance.

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-30190

Read More

Cybersecurity Threat Advisory: BlackMatter Ransomware

The Cybersecurity and Infrastructure Security Agency (CISA) announced the Reduce the Risk of Ransomware Campaign today, a focused, coordinated, and sustained effort to encourage public and private sector organizations to implement best practices, tools, and resources that can help them mitigate this cybersecurity risk and threat.

Read More

CISA Launches Campaign to Reduce the Risk of Ransomware – Centristic Launches Campaign to Eliminate the Risk

The Cybersecurity and Infrastructure Security Agency (CISA) announced the Reduce the Risk of Ransomware Campaign today, a focused, coordinated, and sustained effort to encourage public and private sector organizations to implement best practices, tools, and resources that can help them mitigate this cybersecurity risk and threat.

Read More

9 Cybersecurity Tips to Keep Your Device and Data Safe

Don’t let a cybersecurity incident ruin your holiday season. Follow the tips below to help keep both your company-issued and personal devices data safe during your holiday season

Read More