Intel Releases Security Updates
             Intel has released security updates to address vulnerabilities in multiple products. An authenticated
             attacker with local access could exploit some of these vulnerabilities to gain escalation of privileges.
             The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to
             review the following Intel advisories and apply the necessary updates and recommended
             mitigations:
                    Linux Administrative Tools for Intel Network Adapters Advisory INTEL-SA-00237
                    Processors Voltage Settings Modification Advisory INTEL-SA-00289
                    Control Center-I Advisory INTEL-SA-00299
                    Quartus Prime Pro Edition Advisory INTEL-SA-00311
                    SCS Platform Discovery Utility Advisory INTEL-SA-00312
                    Unexpected Page Fault in Virtualized Environment Advisory INTEL-SA-00317
                    NUC Firmware Advisory INTEL-SA-00323
             For updates addressing low severity vulnerabilities, see the Intel technology blog.



             Adobe Releases Security Updates
             Adobe has released security updates to address vulnerabilities in multiple Adobe products. An
             attacker could exploit some of these vulnerabilities to take control of an affected system. The
             Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to
             review the following Adobe Security Bulletins and apply the necessary updates.
                    ColdFusion APSB19-58
                    Brackets APSB19-57
                    Photoshop CC APSB19-56
                    Acrobat and Reader APSB19-55

             VMware Releases Security Updates for ESXi and Horizon DaaS
             VMware has released security updates to address a vulnerability in ESXi and Horizon DaaS. An
             attacker could exploit this vulnerability to take control of an affected system. The Cybersecurity and
             Infrastructure Security Agency (CISA) encourages users and administrators to review VMware
             Security Advisory VMSA-2019-0022 and apply the necessary updates and workarounds.




             Vulnerabilities and Indicators of Compromise



                    ➢ Weekly Vulnerability Summary from US-CERT
                    ➢ Talos weekly alerts
                    ➢ Krampus 3PC IOCs
                    ➢ (Almost) Hollow and Innocent: Monero Miner Remains Undetected via Process Hollowing
                    ➢ Waterbear is Back, Uses API Hooking to Evade Security Product Detection










                                            Matthew Gardiner, Director of  Product Marketing at Mimecast, on the size
                                            of the phishing problem:  "Approximately 46,000 new phishing sites are

                                            created every day, and on average, they are only active 4-8 hours."