Apple hurries out fixes for WebKit zero-days
Apple hurries out fixes for WebKit zero-days click here to read full Article Read More on latest Security Updates
Tagged: fixes
Apple fixes macOS zero-day bug exploited by Shlayer malware
In the past, Shlayer also used a two-year-old technique to escalate privileges and disable macOS’ Gatekeeper to run unsigned second-stage payloads in a campaign detected by Carbon Black. click here to read full Article...
Microsoft partially fixes Windows 7, Server 2008 vulnerability
This LPE vulnerability (not yet tracked using a CVE ID) stems from the misconfiguration of two service registry keys and it allows local attackers to escalate privileges on any fully patched systems. click here...
Mozilla Fixes Firefox Flaw That Allowed Spoofing of HTTPS Browser Padlock
The patch was part of the Firefox 88 update, Firefox ESR 78.10 browser, and Thunderbird 78.10 email client. In total, Firefox 88 addresses 13 browser bugs, six of which are rated high-severity. click here...
SAP fixes critical bugs in Business Client, Commerce, and NetWeaver
SAP’s security updates for this month address multiple critical vulnerabilities. The most serious of them, rated with the highest severity score, affects the company’s Business Client product. click here to read full Article Read...
Airlift Express Fixes Vulnerabilities in Its E-commerce Store
A team of security researchers from PrivacySavvy recently discovered an OTP vulnerability in Airlift Express, which could lead to account hacks and exploits by cybercriminals. click here to read full Article Read more on...
Apple fixes iOS zero-day vulnerability exploited in the wild
Apple has released security updates to address an iOS zero-day bug, tracked as CVE-2021-1879, actively exploited in the wild and affecting iPhone, iPad, iPod, and Apple Watch devices. click here to read full Article...
Google fixes second actively exploited Chrome zero-day this month
Google has fixed a second actively exploited Chrome zero-day this month with the release of Chrome 89.0.4389.90 to the Stable desktop channel for Windows, Mac, and Linux users. click here to read full Article...
Adobe releases batch of security fixes for Framemaker, Creative Cloud, Connect
Adobe has released fixes for critical security problems impacting Framemaker, Creative Cloud, and Connect. This includes one bug in Framemaker and three critical flaws in Adobe Creative Cloud click here to read full Article...
Samsung fixes critical Android bugs in March 2021 updates
Every vulnerability addressed by this update, has either a ‘High’ or ‘Critical’ severity rating, making this update a must for Android users so that their devices remain protected. click here to read full Article...
Google Fixes A Chrome Zero-Day Bug Under Active Exploitation
Heads up, Chrome users! Google has just fixed another zero-day bug in its Chrome browser… Google Fixes A Chrome Zero-Day Bug Under Active Exploitation on Latest Hacking News. Click here for image source link...
Supermicro, Pulse Secure release fixes for 'TrickBoot' attacks
Supermicro and Pulse Secure have released advisories warning that some of their motherboards are vulnerable to the TrickBot malware’s UEFI firmware-infecting module, known as TrickBoot. Click here for image source link and to read...
Cisco fixes maximum severity MSO auth bypass vulnerability
Cisco has addressed a maximum severity authentication bypass vulnerability found in the API endpoint of the Cisco ACI Multi-Site Orchestrator (MSO) installed on the Application Services Engine. Click here for image source link and...
Google fixes Chrome zero-day flaw actively exploited in the wild
Google released Chrome 88.0.4324.150 version that addressed an actively exploited zero-day security vulnerability. The vulnerability is a Heap buffer overflow dubbed as CVE-2021-21148 that resides in the V8, an open-source high-performance JavaScript and WebAssembly...
Linux Mint fixes screensaver bypass discovered by two kids
Image Source Link The Linux Mint project has patched this week a security flaw that could have allowed a threat actor to bypass the OS screensaver and its password and access locked desktops. Click...
Typeform fixes Zendesk Sell form data hijacking vulnerability
The flaw which existed in Typeform’s Zendesk Market application integration could let attackers to quietly redirect form submissions with potentially delicate info to on their own. Graphic and Write-up Supply hyperlink Browse additional on...
