Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

How to avoid malware on Android in one easy step

Jack Wallen offers up his best advice for avoiding malware on Android, and a list of apps that may be used safely.

Most Popular Websites in History

A really cool graphic courtesy of LinkedIn and Ben Theis of Skol Marketing. This one takes a while to unfold, so be patient. AOL starts as King of the Net, then Yahoo overtakes them.  Google doesn’t even appear on the list until 2002, but grows like crazy.  MySpace appears in 2004, then Facebook in 2007.  Twitter shows up in 2010.  The interesting part for me was how different companies had the lead then lost it.

Having Trouble With Windows Update and version 1903?

I have run across a number of clients who have had difficulty installing the new Windows 10 version 1903 that was released in June 2019.  Often Windows Update is disabled by an earlier update that fails to install properly.  Not only does this prevent upgrading to the 1903 version, but basically your Windows Updates have not been working at all for some time, creating security vulnerabilities.  This article does a great job of explaining how to repair Windows Update service.

CSET Version 9.2 Now Available

Original release date: November 4, 2019

The Cybersecurity and Infrastructure Security Agency (CISA) has released version 9.2 of its Cyber Security Evaluation Tool (CSET). CSET is a desktop software tool that guides asset owners and operators through a consistent process for evaluating control system networks as part of a comprehensive cybersecurity assessment that uses recognized government and industry standards and recommendations.

CSET 9.2 includes the following feature enhancements and upgrades:

  • Web-based diagram editor
  • Enhanced reporting
  • New capability maturity model for financial sector customers
  • National Credit Union Administration (NCUA) Automated Cybersecurity Examination Tool (ACET) Standard
  • Financial sector risk assessment wizard
  • New analysis for network diagram questions
  • Transportation Security Administration (TSA) 2018 Pipeline security standard
  • International Society of Automation (ISA)/International Electrotechnical Commission (IEC) 62443 standards

CISA encourages users to update to CSET version 9.2, available at https://github.com/cisagov/cset/wiki.

Mozilla Releases Security Updates for Firefox and Firefox ESR

Original release date: December 4, 2019

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Mozilla Security Advisories for Firefox 71 and Firefox ESR 68.3.



About the Author:

I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.