Page 16 - Threat Intelligence 12-9-2019
P. 16
Threat Alerts
And Advisories
Mozilla Releases Security Updates for Firefox and Firefox ESR
Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR.
An attacker could exploit some of these vulnerabilities to take control of an affected
system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and
administrators to review the Mozilla Security Advisories for Firefox 71 and Firefox ESR 68.3.
CISA Releases Draft of Binding Operational Directive on Developing a Vulnerability
Disclosure Policy
The Cybersecurity and Infrastructure Security Agency (CISA) has released a draft of Binding
Operational Directive (BOD) 20-01, Develop and Publish a Vulnerability Disclosure Policy.
BOD 20-01 will require each federal agency to publish a vulnerability disclosure policy
(VDP). CISA has posted the draft directive for public feedback. The deadline for submitting
comments is 11:59 PM EST on December 27, 2019.
CISA encourages users and administrators to review the CISA blog post, Improving
Vulnerability Disclosure Together, and draft BOD 20-01 for more information. CISA
encourages feedback on draft BOD 20-01 from individuals with personal or institutional
expertise in vulnerability disclosure and from organizations that have a VDP and manage
coordinated vulnerability disclosures.
Cyber Monday: Tips for Safeguarding Personal Information
Cyber Monday draw millions of shoppers online for deals and savings, but this day also
provides opportunities for an attacker to steal personal information. The Cybersecurity and
Infrastructure Security Agency (CISA) reminds users to remain vigilant when browsing or
shopping online.
www.accumepartners.com
16
