When I got the alert from CISA, I was a bit perplexed too. Why these vulnerabilities and why now? I mean we’re talking about bugs used back in 2015 to root Android devices and infect apps with the Zika malware…ergh, wait, no that’s not right… What was it? Zizi….no…ah! Tizi!
In the Binding Operational Directive (BOD), CISA makes it clear that they only add vulnerabilities to the catalog if there is clear evidence of active exploitation, despite the age of the vulnerability. So it could have been exploited midway through Obama’s first term, as is the case for CVE-2010-2568, or just as recently as last week with attackers going after a vulnerability in Trend Micro’s Apex One.
The Windows Shell Remote Code Execution vulnerability affects Windows XP, Server 2003, Vista, Server 2008, and Windows 7. I can’t say for certain how many federal agencies are running with these operating systems. But governments are typically burdened with red tape and they don’t operate like private enterprises. So there could be some vulnerable systems out there that hackers can take advantage of.
So, at the end of the day, it doesn’t hurt to dig up these patches from the Stone Age and apply them. But I’m sure most threat actors are not paying any attention these days with so much $$$ in the crypto wallet hacks.
#cisa #cisanalysis #windows #Tizi #vulnerabilities #trendmicro
About Version 2 Digital
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.
Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
About VRX
VRX is a consolidated vulnerability management platform that protects assets in real time. Its rich, integrated features efficiently pinpoint and remediate the largest risks to your cyber infrastructure. Resolve the most pressing threats with efficient automation features and precise contextual analysis.
