Home

Virus Removal

Our industrial strength scanners are the most advanced available
We take the time to manually check 31 critical areas
We check that all your hardware is functioning correctly
Operating system corruption can cause performance issues
When we are done your device will be SAFE, SECURE and OPTIMIZED.

Sales

Compumaster offers "Off Lease" equipment at a fraction of the new cost.
Laptops and Desktops are always available.
They are in mint condition
You get a 1 year warranty
Call or pop in for a casual chat about your needs.

2 days ago
Ron at COMPU-MASTER is highly recommended. He readily helps others navigate through the complex field of computers making it look easy. As well he manages to maintain a steady flow of helpfulness as his phone rings continually and there is a steady flow of people through his front door, all the while answering customers questions. In essence Ron provides a community service of which many are appreciative. Thanks greatly Ron. Jennifer K.

Cait Banks

1 review

3 months ago

Ron is literally the best. Take your computer there, you can trust him with anything. Saved me in so many computer jams. Amazing customer service and will take his time explaining things to you even if you ask 500 questions. THE BEST. - Cait

Threats/Scams

AL25-012 - Vulnerabilities impacting Cisco ASA and FTD devices – CVE-2025-20333, CVE-2025-20362 and CVE-2025-20363 – Update 2
Number: AL25-012
Date: September 25, 2025
Updated: May 11, 2026

Audience

This Alert is intended for IT professionals and managers of notified organizations.

Purpose

An Alert is used to raise awareness of a recently identified cyber threat that may impact cyber information assets, and to provide additional detection and mitigation advice to recipients. The Canadian Centre for Cyber Security ("Cyber Centre") is also available to provide additional assistance regarding the content of this Alert to recipients as requested.

Details

The Canadian Centre for Cyber Security (Cyber Centre) is aware of exploitation targeting Cisco Adaptive Security Appliance (ASA) 5500-X Series devices that are running Cisco Secure Firewall ASA Software with VPN web services enabled.

On September 25, 2025, Cisco published security advisories for critical vulnerabilities, CVE-2025-20333, CVE-2025-20362 and CVE-2025-20363, affecting the following ASA and Cisco Secure Firewall Threat Defense (FTD) software release products:

Cisco ASA software release 9.12 – versions prior to 9.12.4.72

Cisco ASA software release 9.14 – versions prior to 9.14.4.28

Cisco ASA software release 9.16 – versions prior to 9.16.4.85

Cisco ASA software release 9.17 – versions prior to 9.17.1.45

Cisco ASA software release 9.18 – versions prior to 9.18.4.67

Cisco ASA software release 9.19 – versions prior to 9.19.1.42

Cisco ASA software release 9.20 – versions prior to 9.20.4.10

Cisco ASA software release 9.22 – versions prior to 9.22.2.14

Cisco ASA software release 9.23 – versions prior to 9.23.1.19

Cisco FTD software release 7.0 – versions prior to 7.0.8.1

Cisco FTD software release 7.1 – all versions

Cisco FTD software release 7.2 – versions prior to 7.2.10.2

Cisco FTD software release 7.3 – all versions

Cisco FTD software release 7.4 – versions prior to 7.4.2.4

Cisco FTD software release 7.6 – versions prior to 7.6.2.1

Cisco FTD software release 7.7 – versions prior to 7.7.10.1

For further details on affected versions and available fixed releases, please refer to the following Cisco advisories^Footnote1^Footnote2^Footnote3.

CVE-2025-20333 is a vulnerability affecting the ASA and FTD software, that could allow an authenticated remote threat actor to execute arbitrary code on affected devices^Footnote1.

CVE-2025-20362 is a vulnerability affecting the ASA and FTD software, that could allow an unauthenticated remote threat actor to access URL endpoints that should otherwise be inaccessible without authentication^Footnote2.

CVE-2025-20363 is a vulnerability affecting the ASA, FTD, Cisco IOS, Cisco IOS XE and Cisco IOS XR software, that could allow an unauthenticated remote threat actor (ASA and FTD) or authenticated remote one (Cisco IOS, IOS XE and IOS XR) with low user privileges to execute arbitrary code on affected devices^Footnote3.

All these vulnerabilities are due to improper validation of user supplied input in HTTP(S) requests.

In response to these vulnerabilities, the Cyber Centre released AV25-619 on September 25^Footnote4.

Update 1

On April 23, 2026, Cisco Talos released a blog post ^Footnote8 and Cisco published a security advisory ^Footnote9 identifying a previously unknown persistence method that remains intact even after upgrading to a patched version released in September 2025. The persistence mechanism is embedded in the Cisco Firepower eXtensible Operating System (FXOS) Software base operating system for Cisco Secure Firewall ASA Software and Cisco Secure FTD Software installations on the affected hardware.

The Cybersecurity and Infrastructure Security Agency (CISA) created the Emergency Directive document V1: ED 25-03: Identify and Mitigate Potential Compromise of Cisco Devices ^Footnote10 and along with the United Kingdom National Cyber Security Centre (NCSC), published a FIRESTARTER Backdoor Malware Analysis Report ^Footnote11 on April 23, 2026.

The Cyber Centre recommends organizations review the Cisco advisory, identify if indicators of compromise are present on their devices, and apply the identified workarounds, including reimaging the device to a known fixed version.

Affected products and versions:

Secure Firewall ASA Software

Cisco ASA software release 9.16 – versions prior to 9.16.4.92

Cisco ASA software release 9.18 – versions prior to 9.18.4.135

Cisco ASA software release 9.20 – versions prior to 9.20.4.30

Cisco ASA software release 9.22 – versions prior to 9.22.3.5

Cisco ASA software release 9.23 – versions prior to 9.23.1.195

Cisco ASA software release 9.24 – versions prior to 9.24.1.155

Secure FTD Software

Cisco FTD software release 7.0 – versions prior to 7.0.9 Hotfix FZ-7.0.9.1-3

Cisco FTD software release 7.2 – versions prior to 7.2.11 Hotfix HI-7.2.11.1-1

Cisco FTD software release 7.4 – versions prior to 7.4.7

Cisco FTD software release 7.6 – versions prior to 7.6.4 Hotfix CC-7.6.4.1-1

Cisco FTD software release 7.7 – versions prior to 7.7.11 Hotfix AE-7.7.11.1-4

Cisco FTD software release 10 – versions prior to 10.0.0 Hot Fix (Target 4/30/2026)

Firepower 4100 and 9300 Security Appliance

Cisco Firepower 4100 and 9300 Security Appliance 2.10 – versions prior to 2.10.1.383

Cisco Firepower 4100 and 9300 Security Appliance 2.12 – versions prior to 2.12.1.117

Cisco Firepower 4100 and 9300 Security Appliance 2.14 – versions prior to 2.14.3.125

Cisco Firepower 4100 and 9300 Security Appliance 2.16 – versions prior to 2.16.2.119

Cisco Firepower 4100 and 9300 Security Appliance 2.17 – versions prior to 2.17.0.549

Cisco Firepower 4100 and 9300 Security Appliance 2.18 – versions prior to 2.18.0.535

End of Update 1

Update 2

Additional Affected Products and versions:

Cisco Secure Firewall ASA and Cisco Secure FTD platforms

Cisco Firepower 1000 Series

Cisco Firepower 2100 Series

Cisco Firepower 4100 Series

Cisco Firepower 9300 Series

Cisco Secure Firewall 1200 Series

Cisco Secure Firewall 3100 Series

Cisco Secure Firewall 4200 Series

End of Update 2

Suggested actions

The Cyber Centre strongly recommends that organizations running Cisco ASA and FTD products upgrading to a fixed release software version^Footnote5.

Organizations upgrading an ASA 5500-X Series model to 9.12.4.72 or 9.14.4.28 should refer to Cisco’s Bootloader and/or ROMMON Verification Failure procedures^Footnote6. If the “firmware-update.log” file is found on “disk0:” after upgrading to a fixed release, organizations are encouraged to preserve the log file and notify the Cyber Centre using the contact information below. Instructions regarding transfer of the log file will be provided as part of the follow-up engagement.

In addition, the Cyber Centre strongly recommends that organizations review and implement the Cyber Centre’s Top 10 IT Security Actions^Footnote7.

If activity matching the content of this alert is discovered, recipients are encouraged to report via the My Cyber Portal, or email contact@cyber.gc.ca.

References

Footnote 1

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability

Return to footnote1 referrer

Footnote 2

Cisco Secure Firewall Adaptive Security Appliance, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software and IOS XR Software HTTP Server Remote Code Execution Vulnerability

Return to footnote2 referrer

Footnote 3

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability

Return to footnote3 referrer

Footnote 4

AV25-619 Cisco Security Advisory

Return to footnote4 referrer

Footnote 5

Cisco Event Response: Continued Attacks Against Cisco Firewalls

Return to footnote5 referrer

Footnote 6

Detection Guide for Continued Attacks against Cisco Firewalls by the Threat Actor behind ArcaneDoor

Return to footnote6 referrer

Footnote 7

Top 10 IT security actions to protect Internet connected networks and information (ITSM.10.089)

Return to footnote7 referrer

Footnote 8

UAT-4356's Targeting of Cisco Firepower Devices

Return to footnote8 referrer

Footnote 9

Continued Evolution of Persistence Mechanism Against Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense

Return to footnote9 referrer

Footnote 10

V1: ED 25-03: Identify and Mitigate Potential Compromise of Cisco Devices

Return to footnote10 referrer

Footnote 11

CISA – Malware Analysis Report – FIRESTARTER Backdoor

Return to footnote11 referrer
cPanel security advisory (AV26-437)
Serial number:AV26-437
Date: May 8, 2026

On May 8, 2026, cPanel published security advisories to address vulnerabilities in the following product:

cPanel & WebHost Manager (WHM) software – versions prior to 11.136.0.9, 11.134.0.25, 11.132.0.31, 11.130.0.22, 11.126.0.58, 11.124.0.37, 11.118.0.66, 11.110.0.116, 11.110.0.117, 11.102.0.41, 11.94.0.30, 11.86.0.43 and WP Squared 11.136.1.10

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Security: CVE-2026-29201 - cPanel & WHM / WP2 Security Update - May 08, 2026

Security: CVE-2026-29202 - cPanel & WHM / WP2 Security Update - May 08, 2026

Security: CVE-2026-29203 - cPanel & WHM / WP2 Security Update - May 08, 2026

cPanel Support Topics
AL26-011 - Vulnerabilities affecting Linux - CVE-2026-43284 and CVE-2026-43500
Number: AL26-011
Date: May 8, 2026

Audience

This Alert is intended for IT professionals and managers.

Purpose

An Alert is used to raise awareness of a recently identified cyber threat that may impact cyber information assets, and to provide additional detection and mitigation advice to recipients. The Canadian Centre for Cyber Security (Cyber Centre) is also available to provide additional assistance regarding the content of this Alert upon request.

Details

The Cyber Centre is aware of security vulnerabilities affecting Linux-based operating systems, identified as CVE-2026-43284^Footnote1 and CVE-2026-43500^Footnote2.

Tracked as CVE-2026-43284, this is a Linux kernel Write-what-where Condition vulnerability (CWE-123)^Footnote3 that may allow a local attacker to execute arbitrary code.

CVE-2026-43500 is a Linux kernel local privilege escalation (LPE) vulnerability in the RxRPC subsystem that may allow a local attacker to escalate privileges.

Public reporting and Linux kernel security advisories^Footnote4^Footnote5^Footnote6^Footnote7^Footnote8^Footnote9 indicate that these vulnerabilities originate in the Linux kernel and may, under certain conditions, allow privilege escalation to root or bypass of isolation mechanisms.

Publicly referred to as “Dirty Frag”, CVE-2026-43284 and CVE-2026-43500 can be chained to allow for a local unprivileged user to gain root access^Footnote10. Chained with a remote code execution vulnerability, these vulnerabilities are even more significant and need to be prioritized for patching.

The Cyber Centre is aware of working publicly available Proof of Concepts (POC) exploiting these vulnerabilities^Footnote11.

Suggested actions

As of May 8, 2026, no universal fix has been released across all stable kernels for CVE-2026-43284 and CVE-2026-43500.

The Cyber Centre recommends that organizations identify and apply the recommended mitigations until patches become available.

Affected environments include, but are not limited to:

Enterprise Linux distributions (Red Hat Enterprise Linux, Rocky Linux, AlmaLinux, Oracle Linux, Fedora and CentOS Stream)

Debian-based distributions (Debian, Ubuntu)

SUSE-based distributions (SUSE Linux Enterprise, openSUSE)

Other Linux systems running vulnerable kernel versions

Organizations should consult their respective distribution maintainers for version-specific impact and mitigation guidance. Organizations can determine whether systems may be affected by CVE-2026-43284 and CVE-2026-43500 in:

Identifying the running Linux kernel version using the uname -r command that include:
ESP/XFRM IPsec support

UDP ESP‑in‑UDP receive paths

RXRPC enabled

Checking whether the affected kernel modules are currently loaded by running lsmod | egrep '^(esp4|esp6|rxrpc)\b' or grep -qE '^(esp4|esp6|rxrpc) ' /proc/modules;no output indicates the modules are not currently loaded, but organizations should also confirm whether the modules are available to load and review vendor guidance, as module availability and default exposure vary by distribution.

Until vendor patches are available, the Cyber Centre recommends that organizations:

Disable vulnerable kernel modules (esp, esp6 and rxpc) if not required by running sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; true" or distro-specific guidance when available^Footnote9^Footnote12. Note: Disabling esp4, esp6 may break IPsec. Disabling rxrpc may impact AFS-based systems. Regenerate the initramfs images to prevent the modules from being loaded during early boot by running sudo update-initramfs -u -k all or follow vendor-specific guidance when available

Restrict local and remote access to affected systems, particularly in shared or multi-tenant environments

Review and limit administrative privileges, including sudo and role-based access

Monitor authentication, system, and kernel logs for signs of privilege escalation or abnormal activity

In addition, the Cyber Centre strongly recommends that organizations review and implement the Cyber Centre’s Top 10 IT Security Actions with an emphasis on the following topics^Footnote13.

Patch operating systems and applications

Enforce the management of administrative privileges

Harden operating systems and applications

Segment and separate information

Should activity matching the content of this alert be discovered, recipients are encouraged to report via My Cyber Portal, or email contact@cyber.gc.ca.

References

Footnote 1

CVE-2026-43284 Detail

Return to footnote1 referrer

Footnote 2

CVE-2026-43500

Return to footnote2 referrer

Footnote 3

CWE-123: Write-what-where Condition

Return to footnote3 referrer

Footnote 4

"Dirty Frag" and other issues in Amazon Linux kernels

Return to footnote4 referrer

Footnote 5

Debian - CVE-2026-43284

Return to footnote5 referrer

Footnote 6

Red Hat Bugzilla – Bug 2467771

Return to footnote6 referrer

Footnote 7

SUSE Common Vulnerabilities and Exposures - CVE-2026-43284

Return to footnote7 referrer

Footnote 8

Ubuntu - CVE-2026-43284

Return to footnote8 referrer

Footnote 9

Dirty Frag (CVE-2026-43284, CVE-2026-43500) vulnerability fix is ready for testing

Return to footnote9 referrer

Footnote 10

Dirty Frag: Linux Kernel Local Privilege Escalation via ESP and RxRPC

Return to footnote10 referrer

Footnote 11

New Linux 'Dirty Frag' zero-day gives root on all major distros

Return to footnote11 referrer

Footnote 12

Dirty Frag Linux kernel local privilege escalation vulnerability mitigations

Return to footnote12 referrer

Footnote 13

Top 10 IT security actions to protect Internet connected networks and information (ITSM.10.089)

Return to footnote13 referrer
Microsoft Edge security advisory (AV26-436)
Serial number:AV26-436
Date: May 8, 2026

On May 7, 2026, Microsoft published a security update to address vulnerabilities in the following product:

Microsoft Edge Stable Channel – versions prior to 148.0.3967.54

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary update.

Microsoft Edge Stable Channel Release Notes
Ivanti security advisory (AV26-435)
Serial number:AV26-435
Date:May 7, 2026

On May 7, 2026, Ivanti published a security advisory to address vulnerabilities in the following product:

Ivanti Endpoint Manager Mobile (EPMM) – versions prior to 12.6.1.1

Ivanti Endpoint Manager Mobile (EPMM) – versions prior to 12.7.0.1

Ivanti Endpoint Manager Mobile (EPMM) – versions prior to 12.8.0.1

Ivanti has indicated that CVE-2026-6973 has been exploited.

On May 7, 2026, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-6973 to their Known Exploited Vulnerabilities (KEV) Database.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Security Advisory Ivanti Endpoint Manager Mobile (EPMM) (Multiple CVEs)

Ivanti Security Advisories

CISA KEV: CVE-2026-6973
Broadcom VMware security advisory (AV26-434)
Serial number:AV26-434
Date:May 7, 2026

Between May 6 and 7, 2026, Broadcom published security advisories to address vulnerabilities in multiple products. Included were critical updates for the following:

Tanzu Greenplum Command Center – versions prior to 6.17.0

Tanzu Greenplum Command Center – versions prior to 7.7.0

Tanzu Greenplum Data Copy Utility – versions prior to 2.9.3

Tanzu for MySQL on Kubernetes – versions prior to 2.0.3

Tanzu Greenplum Streaming Server for Kubernetes – versions prior to 1.3.0

Tanzu Greenplum Streaming Server – versions prior to 2.3.0

Tanzu Greenplum Streaming on Kubernetes – versions prior to 1.1.0

Tanzu Greenplum Text – versions prior to 4.0.0

Tanzu for Valkey on Kubernetes – versions prior to 3.3.4

Tanzu for Valkey on Kubernetes – versions prior to 3.4.0

The Cyber Centre encourages users and administrators to review the web link provided and apply the necessary updates.

Security Advisories Tanzu

Virus Removal

Sales

Testimonials

Threats/Scams

Audience

Purpose

Details

Update 1

Update 2

Suggested actions

References

Audience

Purpose

Details

Suggested actions