CMMC Level 3 Control – Email Sandboxing (SI.3.220)

/
An overview for this control states an organization should utilize sandboxing to detect or block potentially malicious email.  The action can prevent malicious files from entering the network and should be document in the Configuration Management Policy.

Password Security Question Recommendations

/
It is risky to post security questions.  Security questions exist on pretty much every website that requires a username and password. 

Zoom enacts security and privacy control to prevent Zoombombing

/
On April 5th, Zoom turned on the passwords and waiting room features for meetings by default aimed at users of their free version and those with a single license version to help prevent “Zoombombing”.

WordPress 5.4 “Adderley” Released

/
WordPress 5.4 “Adderley” was released to the public on March 31, 2020. Check WordPress 5.4 announcement blogpost for more information on this release.

What is Zoombombing and how to defend against it

/
Zoombombing is when an unauthorized person or stranger joins a Zoom meeting/chat session and cause disorder by saying offensive things and even photobombing your meeting by sharing pornographic and hate images.

The CMMC Accreditation Body signs MOU with the U.S. Department of Defense

/
The CMMC-AB is pleased to announce that it has mutually signed the Memorandum of Understanding (MOU) with the Department of Defense.

Microsoft Windows SMB Server Could Allow for Remote Code Execution (CVE-2020-0796) – Security Advisory

/
SUBJECT: A Vulnerability in Microsoft Windows SMB Server Could…

Setting up the root account on Kali 2020

/
If you would like to use root instead of the none superuser account kali, here are the instructions to do so:

Kali 2020.1 Default Username & Password – kali kali

/
In Kali Linux 2020.1, both the default user and password will be “kali”

Intel Active Management Technology Multiple Vulnerabilities (INTEL-SA-00241)

/
Multiple potential security vulnerabilities in Intel Active Management Technology (Intel AMT) may allow escalation of privilege, information disclosure, and/or denial of service. Vulnerability Detection Result