Backdoor discovered in Webmin, a popular Unix utility
A security researcher discovered a backdoor in the popular web-based utility used to remotely manage Unix-based servers, to include Linux, FreeBSD and OpenBSD systems.
23 Texas towns hit in coordinated ransomware attack
The Texas Department of Information Resources (DIR) has confirmed late Friday that 23 towns across Texas were victims of a coordinated ransomware attack.
Bluetooth BR/EDR supported devices vulnerable to cyber attacks
Security researchers have identified a security vulnerability related to encryption on Bluetooth BR/EDR connections. As a result, an unauthenticated attacker near the vulnerable device could exploit the issue and escalate privileges or steal information.
Biometric records of 1M users exposed in massive data breach
Biometric records on 1 million users have been exposed in a massive data breach of publicly exposed database. The records include fingerprints, facial recognition data, unencrypted usernames and passwords, and employee personal data.
Microsoft August 2019 Security Updates
Microsoft issued the August 2019 Security Updates on Tuesday that include 93 unique vulnerability fixes, 29 of those rated critical. In addition, two of the patches address two critical Remote Code Execution (RCE) "wormable" vulnerabilities (CVE-2019-1181 and CVE-2019-1182) in Remote Desktop Services.
Adobe security updates for multiple products
Adobe has released security updates for multiple products to include Adobe Acrobat and Reader, Photoshop CC, Creative Cloud Desktop Application and others.
Organizations face major IoT risks and challenges
The National Institute of Standards and Technology (NIST) has recently published security guidelines for IoT devices. NIST hopes the new publication can help organizations better understand and manage the cybersecurity and privacy risks associated with IoT devices throughout the devices’ lifecycles.
Cisco fixes vulnerabilities in multiple products
Cisco has released security updates to patch critical and high severity vulnerabilities in multiple Cisco products to include small business switches, IOS XR, Webex and others.
Chrome security updates
Google has released a new security update for Chrome browser 76.0.3809.100 for Windows, Mac and Linux.
SWAPGS: Newest Spectre vulnerability affects millions of systems
Security researchers have found a new side-channel attack and vulnerability that affects millions of newer Intel microprocessors. The new vulnerability CVE-2019-1125 dubbed SWAPGS is a variant of Spectre Variant 1 and bypasses previous mitigations against Spectre and Meltdown.