For the third time this year, Microsoft has warned users and organizations to stay vigilant against BlueKeep and patch their systems. In collaboration with security researchers, Microsoft investigated recent system crashes have been caused by a BlueKeep Metasploit module.
Organizations should prioritize getting rid of end-of-support (EOS) software. To assist in that effort, the Multi-State Information Sharing and Analysis Center (MS-ISAC) has released an EOS software report list.
Trend Micro has revealed a rogue employee has stolen 120,000 consumer customer records from an internal customer service database.
Fraudsters are actively exploiting a bug in Firefox that causes the browser to freeze with a warning message the victim computer is running a pirated version of Windows.
Apple has released security updates for iOS, macOS, watchOS, Safari, iCloud, tvOS and iTunes.
Google has released a new security update for Chrome browser 78.0.3904.87 for Windows, Mac and Linux. There are reports of one of those vulnerabilities CVE-2019-13720 being exploited in the wild.
Samba has released a software update and patches for three security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
Security researchers discovered an unsecured Adobe Creative Cloud Elasticsearch database that exposed nearly 7.5 million user records.
The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has warned of an ongoing and widespread phishing campaign designed to spread Emotet malware throughout Australia.
A recently patched vulnerability in newer versions of the PHP programming language is being exploited in the wild. The remote code execution (RCE) bug could allow an attacker to take over NGINX servers.