Author: David Shelley

Hotfix applied to XG Firewall v17.5 for Exim vulnerability

Screen Shot 2019-06-14 at 12.56.45 PM

Some of you may be aware that security researchers recently discovered a security vulnerability in a popular email server, Exim. Exim is used by XG Firewall v17.5, specifically if a customer has enabled Email Protection. There is no need to worry, Sophos has you covered.
On Friday 7 June 2019, Sophos released and automatically applied an over the air hotfix to all XG Firewalls with auto-updates enabled to address this issue. If your XG Firewall does not have auto-updates enabled, please review KB134199 and contact Sophos Support.

Exim mail servers patching: https://nakedsecurity.sophos.com/2019/06/07/action-required-exim-mail-servers-need-urgent-patching

Ubiquiti Cloud Service/Appliance at AWS (EC2)

Screen Shot 2019-06-06 at 6.42.02 PM Screen Shot 2019-06-06 at 6.41.40 PM Screen Shot 2019-06-06 at 6.41.28 PM

For those that leverage Ubiquiti wifi products, switches, or other network equipment, there is a great product that can centrally manage all your devices via the Cloud Controller at AWS.  There is a pre-set EC2 instance you can deploy that will join all your devices to is for a small fee a month.  For roughly $15/month, you can have your own dedicated controller at AWS that works very well.  Before you would have to purchase a physical controller and have it on-premise at the particular location or download the software and install it on a server.  This is more streamlines and ensures uptime for configuration.

 

Microsoft Office 365 User for Azure – Upgrade to Windows10

Screen Shot 2019-05-28 at 4.16.52 PM

So as of May of this year Microsoft is allowing all Office365 (O365) business users to upgrade their local desktop/notebook machines to Windows 10.  This initiative is due to all the features that Windows10 provides and how they integrate to O365.  Windows7 will not be supported post January 22nd, 2020 and this is a great step Microsoft is moving people off a legacy operating system.   If you have Windows devices running Windows 7 Pro, Windows 8 Pro, or Windows 8.1 Pro, your Microsoft 365 Business subscription entitles you to a Windows 10 upgrade.  This only applies if you are using AD Business Azure but this is becoming very popular these days for security and authentication.  This cost is $2/user and allows for Microsoft to manage AD through their services platform.

For more information on how to upgrade Windows devices to Windows 10 Pro Creators Update, follow the steps in this topic: Upgrade Windows devices to Windows Pro Creators Update.

 

Microsoft Issues – Be Mindful

Screen Shot 2019-04-11 at 11.59.30 AM

Microsoft has released security updates that are impacting some security AV vendors, causing some of their customers using Windows 7, Windows 8.1, Windows 2008 R2, and Windows 2012 to occasionally experience system fails or hangs during boot up after application of the update. Many AV vendors are working very closely with Microsoft to resolve the issue. Microsoft has introduced a temporary block to stop computers not already affected from applying the latest Windows security update.

Additionally, we have a work around for those impacted customers. To be impacted, customers must meet all the criteria below. If they do not meet all the criteria, then they are not impacted.

1. Running Windows 7, Windows 8.1, Windows 2008 R2, or Windows 2012

2. Have applied the latest Windows security update and have rebooted after the update is complete Important note: If customers have not yet rebooted, they should uninstall the latest Microsoft security update before rebooting

KBA 133945 will continue to be updated with the latest information. The latest information about this issue and remediation steps are documented in KBA 133945.

Being Diligent Pays Off: Upgrading your Database

Screen Shot 2019-03-15 at 12.44.57 PM

Database technologies are often overlooked forgotten about because they typically do not take that much manipulation at an administrative layer…legacy systems are just expected to work and IT personnel are expected to keep them working. With data changing so rapidly and databases being so heavily relied upon, it would make more sense to spend more time and effort to ensure the health and version is up to date.

There are plenty of reasons to upgrade your database:

  • A platform for rapid reporting and analytics
  • Increased scalability and availability
  • Support for new data sources and types
  • Robust security
  • Lower cost of ownership
  • More stability
  • Better reporting results

HP recalls 78,500 Laptop Batteries

Screen Shot 2019-03-14 at 10.53.04 AM

Last month HP has announced a recall of over 75k laptop models the bad batteries that have the potential of causing fires.  The batteries were shipped between December, 2015 and April, 2018.  This issue deals with over 50,000 batteries and affects the following models:

  • HP ProBooks (64x G2 and G3 series, 65x G2 and G3 series, 4xx G4 series)
  • HPx360 (310 G2), HP Pavilion x360 11-inch Notebook PC
  • HP 11 Notebook PC, HP ZBook (17 G3, and Studio G3) mobile workstations.
  • The batteries were also sold as accessories or replacement batteries for the HP ZBook Studio G4 mobile workstation
  • HP ProBook 4xx G5 series, HP ENVY 15
  • HP Mobile Thin Clients (mt21, mt22, and mt31)

Cisco Changing Business Model from Hardware to Software

Screen Shot 2019-03-11 at 7.42.42 PM

Cisco has made the determination with new leadership to move their business model to more Software-based as opposed to pushing so much hardware.  This is far away from their normal form of business practice.  The new CEO is shifting the company’s offerings toward software-based networking, security and management products, which customers increasingly prefer because they’re less expensive and more adaptable. Recent acquisitions such as Jasper Technologies, whose software allows companies to connect all sorts of electronic devices, and a new emphasis on security are helping make Cisco less dependent on its expensive, purpose-built hardware, especially as lackluster economic growth means corporate customers are reluctant to spend.

Google Revealed a rare Mac security flaw- BuggyCow

Screen Shot 2019-03-05 at 7.23.51 PM

Google has uncovered a rare security flaw for Apple’s computer operating system MacOS…it was a bug that was known by Apple…they are aware and have been notified that it has to be fixed in the next 90 days.  The Google folks are calling the bug, “BuggyCow.”

The bug allows malware already running on a Mac, or a rogue logged-in user, to gain access to the more protected bits of their computer. The Mac would already need to be compromised in some way to actually exploited the bug.  Security is build in layers and in this case at an OS layer that is not the case with the current OS in production.

USB 4 Finally Here – 40GB Throughput

Screen Shot 2019-03-05 at 7.12.12 PM

Finally USB 4 is out and should be something to consider when purchasing your next computer.  The new standard is based on Intel’s Thunderbolt protocol and supports a range of features, including data transfer rates of up to 40 Gbps, display interfaces, and power delivery.  Its support to be released around May 2019.  The new interface will use USB Type-C connectors and will maintain backwards compatibility with USB 2.0, USB 3.2, and Thunderbolt 3 interfaces.

Is Your Office365 Environment Backed Up

Microsoft Office365

It is a great misunderstanding that your email is backed up in the cloud with Microsoft when you leverage their service for email.  This is not the case and something that organizations should be mindful of depending on compliance or overall legal requirements via liability.  In many cases if there is a legal situation with an employee or client, the judge in the discovery process will request an organization to reproduce emails for the time period in question and many organizations are not set up for this.  There are several solution out there that bva uses that will capture all inbound and outbound message correspondence.  Typically a service of this nature is an additional cost of about $2 to $4 per user/per month but having an online backup of your data in a secure location is a must.  If you would like to know more about solutions that could work for your business, please contact bva.