Apple has released a patch for a previously disclosed “Unc0ver” jailbreak 0-day vulnerability. The security updates and patch address iOS 13.5.1, macOS Catalina 10.15.5 Supplemental Update, watchOS 6.2.6, tvOS 13.4.6 and other products.
Apple releases patch for “unc0ver” jailbreak zero-day vulnerability Read More »
TrickBot recently replaced one of its propagation modules “mworm” with new module named “nworm.” The updated module can exploit vulnerable domain controllers (DCs) and evade detection by running in memory.
TrickBot trojan updates propagation module with nworm to evade detection Read More »
VMware issued a security advisory for multiple vulnerabilities that impact VMware ESXi, Workstation, Fusion, VMRC and Horizon Client products. An attacker could exploit one of these vulnerabilities and take control of an unpatched system.
The National Security Agency (NSA) issued a new warning of Russian cyber actors exploiting an Exim Mail Transfer Agent (MTA) vulnerability CVE-2019-10149. The cyber attacks have been ongoing since last August.
Sandworm actors exploiting Exim MTA vulnerability Read More »
Apple has released security updates for macOS Catalina 10.15.5, Safari 13.1.1, iOS 13.5 and other products.
Apple security updates for macOS Catalina, Safari, iOS and other products Read More »
Security researchers have discovered a new version of Sarwent malware that has new command functionality, such as executing PowerShell commands and preference for using RDP.
Sarwent malware has new command functions, targets RDP Read More »
Microsoft has issued an out-of-band patch for a privileged escalation vulnerability in Microsoft Edge (Chromium-based). Microsoft said the vulnerability CVE-2020-1195 exists in Edge when the Feedback extension improperly validates input.
Microsoft patches a privileged escalation vulnerability in Edge Read More »
Cisco patched a Critical RCE vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express (Unified CCX). The company also addressed a DoS vulnerability in MDS 9000 Series Switches.
Cisco patches Critical RCE vulnerability in Unified CCX software Read More »
Drupal has released security updates to address cross-site scripting (XSS) and Open Redirect vulnerabilities affecting Drupal 7, 8.7, and 8.8.
Drupal issues two moderately Critical security advisories Read More »
Adobe has released security updates to address vulnerabilities in Premiere Pro, Premiere Rush and Audition products. Successful exploitation could lead to information disclosure.
Adobe security updates for multiple products Read More »
