← All posts
TrustDigital Weekly Brief

Security Vulnerabilities to Watch This Week

Stay informed about critical vulnerabilities impacting your business operations this week.

Two items have caught our eye this week that we need to discuss. First, the Cisco IOS vulnerability, identified as CVE-2008-4128, is being actively exploited. It affects Cisco IOS 12.4 and allows attackers to execute unwanted commands remotely due to cross-site request forgery issues. While this vulnerability is dated, its exploitation indicates that organizations are still vulnerable if they haven’t updated their systems or secured their configurations. We recommend checking your network devices to ensure they are up-to-date and properly configured.

Next, Adobe ColdFusion has a new vulnerability, CVE-2026-48282, which could allow malicious users to execute arbitrary code. If you're using ColdFusion, take this seriously. The sooner you apply patches, the better. Cybercriminals often rush to exploit newly discovered vulnerabilities, especially those with the potential for significant impact.

Now, let’s shift gears to some end-of-support deadlines. We want to ensure you’re not caught off guard. Windows 10 version 1607, Windows 11 version 24H2, and Microsoft Office 2021 will all reach end-of-support status on October 13, 2026. This means no more updates or security patches. If your organization is still running these versions, start planning your upgrade strategy before it’s too late. SQL Server 2016 SP3 and its Azure Connect Pack have already reached the end of their support, so if you’re still using these, it’s time to make some decisions.

Now, let’s highlight a couple of Microsoft updates that could genuinely benefit small businesses. First, Microsoft recently introduced PowerPoint Craft, which modernizes the presentation creation process, making it easier to generate polished slides. This could save you and your team a lot of hassle during presentations. Check out the details here.

Secondly, Microsoft has rolled out a feature that allows you to enable backup for Microsoft 365. This built-in safety net is crucial for protecting your organization’s data. It might be worth your time to read through the essentials before enabling it, which you can find here.

As always, we’re here to help you navigate these updates and vulnerabilities. If you have any questions or need assistance, feel free to reach out to us here.