Catch IT

Catch-IT: Multiple Vulnerabilities Found in Microsoft Products

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new [...]

By |2024-02-14T14:37:09-05:00February 14th, 2024|Categories: Catch IT, News|Tags: , , , , , , |

3 Important Considerations for 2024

With 2024 in full swing, we know budgets have been prepared and are in full-swing implementation.  Hoping you made considerations in security investments for the coming year to better protect your organization from growing threats, we wanted to highlight 3 things for consideration.  If you haven't given these areas [...]

By |2024-01-17T12:25:24-05:00January 17th, 2024|Categories: BMT Announcement, CyberSecurity, News|Tags: , , , , |

Catch-IT: Update Google Chrome Now – Serious Security Flaw Identified

Google has rushed to patch a zero-day vulnerability in Chrome that was exploited by a commercial spyware vendor.  If you haven't done so already, we encourage you to update your Chrome browser ASAP.  CVE-2023-5217 exists in the wild and this flaw could have allow criminals to sneakily install spyware [...]

By |2023-09-28T11:03:54-05:00September 28th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: Multiple Vulnerabilities Found in Adobe Products

Adobe's Patch Tuesday update for September 2023 comes with a patch for a critical actively exploited security flaw in Acrobat and Reader that could permit an attacker to execute malicious code on susceptible systems.  The vulnerability, tracked as CVE-2023-26369, is rated 7.8 for severity on the CVSS scoring system and impacts [...]

By |2023-09-14T12:12:44-05:00September 14th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Vietnamese Hackers Deploy Python-Based Stealer via Facebook Messenger

A new phishing attack is leveraging Facebook Messenger to propagate messages with malicious attachments from a "swarm of fake and hijacked personal accounts" with the ultimate goal of taking over the targets' accounts. "Originating yet again from a Vietnamese-based group, this campaign uses a tiny compressed file attachment that [...]

By |2023-09-12T07:35:24-05:00September 11th, 2023|Categories: BMT Announcement, CyberSecurity|

Catch-IT: August Patch Tuesday Identifies Two Zero-Day Vulnerabilities

This month's Microsoft Patch Tuesday fixes two zero-day vulnerabilities, with both exploited in attacks and one of them publicly disclosed. Identified Vulnerabilities The first zero-day vulnerability, CVE-2023-36884, is a remote code execution vulnerability in the Windows Search component. This vulnerability can be exploited by an attacker to send a [...]

By |2023-08-09T10:23:36-05:00August 9th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: Apple has issued security patches to address zero-day vulnerabilities

Apple has issued security patches to address zero-day vulnerabilities (CVE-2023-38606, CVE-2023-32409, and CVE-2023-37450) that have been exploited in attacks against iPhones, Macs, and iPads that seriously affect the digital security of Apple devices.  Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the [...]

By |2023-07-26T12:53:20-05:00July 26th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: Apple Pushes out Emergency Fix for Actively Exploited Zero-Day

Apple has patched an actively exploited zero-day vulnerability (CVE-2023-37450) by releasing Rapid Security Response updates for iPhones, iPads and Macs running the latest versions of its operating systems. The vulnerability has been discovered in Apple products, which could allow for arbitrary code execution. Successful exploitation of this vulnerability could allow for arbitrary code [...]

By |2023-07-17T13:19:01-05:00July 17th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: Multiple Vulnerabilities Found in Microsoft Products

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new [...]

By |2023-07-13T13:13:33-05:00July 13th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: Multiple Vulnerabilities Found in Google Android OS

Multiple vulnerabilities have been discovered in Google Android OS (CVE-2023-26083, CVE-2021-29256, and CVE-2023-2136), the most severe of which could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of the most [...]

By |2023-07-06T10:15:48-05:00July 6th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: What to Look for in the Latest Phishing Scam

The latest phishing attack is targeting law firms and small businesses.   Claiming to be a construction company, supplier, or other specialty contractor seeking legal services, these bad actors are looking to gain access to the vast amounts of sensitive information these companies manage.  If successful, the attacker may attempt [...]

By |2023-06-26T13:50:19-05:00June 26th, 2023|Categories: Catch IT, News|Tags: , , , , , , |

Catch-IT: Apple Releases Security Updates for Several Products

Multiple vulnerabilities have recently been discovered in Apple Products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with [...]

By |2023-06-22T10:29:45-05:00June 22nd, 2023|Categories: Catch IT, News|Tags: , , , , , , |
Go to Top