2022 - Page 7 of 28

Uber provides updates on cybersecurity incident

Authentication, Data Breach, Data Privacy / Frank Crast / September 20, 2022 / Data Breach, hacking, Lapsus$, Privacy, Uber

Uber provided new details regarding a cybersecurity incident that resulted in a data breach of its network systems.

Uber provides updates on cybersecurity incident Read More »

Adobe security updates for multiple products

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 15, 2022 / Adobe, Animate, Bridge, Experience Manager, Illustrator, InCopy, InDesign, Photoshop

Adobe has released security updates that address multiple vulnerabilities in Animate, Bridge, Experience Manager, Illustrator, InCopy, InDesign, and Photoshop.

Adobe security updates for multiple products Read More »

Apple patches vulnerabilities in iOS 16, iOS 15.7, macOS Monterey 12.6, Big Sur 11.7 and other products

Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 14, 2022 / Big Sur, CVE-2022-32894, CVE-2022-32917, iOS, iOS157, iOS16, macOS, Monterey126

Apple has released security updates for Apple iOS 16, iOS 15.7, macOS Monterey 12.6, macOS Big Sur 11.7, Safari 15.6, and other products. Apple also warned two zero-day vulnerabilities may have been exploited in the wild.

Apple patches vulnerabilities in iOS 16, iOS 15.7, macOS Monterey 12.6, Big Sur 11.7 and other products Read More »

Microsoft September 2022 Security Updates addresses 63 vulnerabilities (5 Critical, 1 zero-day, 1 Spectre-BHP)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 14, 2022 / CVE-2022-34700, CVE-2022-34718, CVE-2022-34721, CVE-2022-34722, CVE-2022-35805, CVE-2022-37969, Cybersecurity Threat Center, Microsoft, Spectre v2, Spectre-BHP

The Microsoft September 2022 Security Updates includes patches and advisories for 63 vulnerabilities. Five of those are rated Critical severity, one that addresses a previously disclosed Spectre-BHP flaw, and a zero-day exploited in the wild.

Microsoft September 2022 Security Updates addresses 63 vulnerabilities (5 Critical, 1 zero-day, 1 Spectre-BHP) Read More »

Cybercriminal group TeamTNT leaks DockerHub credentials

Authentication, Cybersecurity Attacks, Malware / Frank Crast / September 12, 2022 / Container, Docker, DockerHub, TeamTNT

Researchers from Trend Micro have discovered cybercriminal group TeamTNT leaking credentials from two of their attacker-controlled accounts via exposed Docker REST APIs.

Cybercriminal group TeamTNT leaks DockerHub credentials Read More »

Mirai variant MooBot botnet targets multiple D-Link flaws

Cybersecurity Attacks, Malware, Network Security, Vulnerabilities & Exploits / Frank Crast / September 11, 2022 / botnet, CVE-2015-2051, CVE-2018-6530, CVE-2022-26258, CVE-2022-28958, Cybersecurity Threat Center, D-Link, Mirai, MooBot

Security researchers from Palo Alto Networks Unit 42 have discovered a Mirai botnet variant dubbed “MooBot” that targets multiple D-Link flaws and exposed networking devices running Linux.

Mirai variant MooBot botnet targets multiple D-Link flaws Read More »

CISA adds 12 vulnerabilities to Known Exploited Vulnerabilities Catalog

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 11, 2022 / Android, Apple, Chrome, CVE-2022-26258, CVE-2022-27593, CVE-2022-28958, CVE-2022-3075, D-Link, FortiOS, MikroTik, Oracle, QNAP, QNAP NAS, WebLogic

The Cybersecurity and Infrastructure Security Agency (CISA) has added 12 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Apple, Chrome, Android OS, D-Link (5), QNAP NAS, MikroTik, Oracle WebLogic, FortiOS and FortiADC flaws.

CISA adds 12 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »

Report: Linux malware and cloud misconfigurations top cybersecurity threats

Cloud Security, Container Security, Cybersecurity Attacks, Malware / Frank Crast / September 5, 2022 / BlackCat, Cheerscrypt, Cloud, Containers, Conti, ESXi, Linux, LockBit, LockBit 2.0, MaaS, malware, RaaS, Ransomware, Trend Micro

A new report published by Trend Micro revealed that Linux malware and cloud misconfigurations make up some of the top cybersecurity threats facing organizations over the first half of 2022.

Report: Linux malware and cloud misconfigurations top cybersecurity threats Read More »

Google fixes Chrome 105 zero-day vulnerability (CVE-2022-3075) exploited in the wild

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 5, 2022 / browser, Chrome, Chrome105, CVE-2022-3075, Vulnerabilities

Google has released Chrome 105.0.5195.102 for Windows, Mac and Linux with a fix for a High severity zero-day vulnerability (CVE-2022-3075) exploited in the wild.

Google fixes Chrome 105 zero-day vulnerability (CVE-2022-3075) exploited in the wild Read More »

Apple fixes zero-day vulnerability (CVE-2022-32893) in iOS 12.5.6 exploited in the wild

Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 2, 2022 / Apple, CVE-2022-32893, Exploit, iOS, Vulnerabilities, Webkit, Zero-day

Apple has fixed a zero-day vulnerability (CVE-2022-32893) in iOS 12.5.6 under attack in the wild.

Apple fixes zero-day vulnerability (CVE-2022-32893) in iOS 12.5.6 exploited in the wild Read More »