That is beyond sad. CISA adds 8 vulnerabilities to list of actively exploited bugs
The US Cybersecurity & Infrastructure Security Agency, or CISA, (which was apparently named by the Department of Redundancy Department) has pointed out that somewhere in the bureaucracy there is some agency still using a version of Microsoft's Internet Explorer that is subject to a problem designated with a CVE number from 2014. That is truly sad.
As all of the vulnerabilities in the catalog are leveraged in active threats and current cyber-attacks, they carry a significant risk to organizations, allowing the takeover of mobile devices, network access, the ability to execute commands remotely.
Oh, and there is a CVE from 2013 as well, as well as a couple of others from 2014, but they don't impact Internet Explorer.
It appears that many system administrators still find it practically challenging to apply the fixing updates after almost eight years since they were first made publicly available.
Your Tax Dollars, but not working very effectively.
No comments:
Post a Comment
Comment Moderation is in place. Your comment will be visible as soon as I can get to it. Unless it is SPAM, and then it will never see the light of day.
Be Nice. Personal Attacks WILL be deleted. And I reserve the right to delete stuff that annoys me.