Apple has fixed a zero-day vulnerability CVE-2021-1879 exploited in the wild in the latest security updates for iOS iOS 14.4.2, iPadOS 14.4.2, and watchOS 7.3.3.
Apple iOS 14.4.2 security update fixes zero-day vulnerability exploited in the wild Read More »
Samba has released software updates to fix two High severity security vulnerabilities (CVE-2020-27840 and CVE-2021-20277) that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
Samba fixes two High severity bugs (CVE-2020-27840 and CVE-2021-20277) Read More »
OpenSSL has patched two High severity vulnerabilities CVE-2021-3449 and CVE-2021-3450 in certain OpenSSL versions. As a result, a bad actor could exploit and launch a Denial of Service attack against impacted systems.
OpenSSL patches two High risk vulnerabilities (CVE-2021-3449 and CVE-2021-3450) Read More »
Cybersecurity experts discovered active exploits against vulnerable WordPress sites running previously patched Thrive Themes and plugins.
Active exploits target WordPress sites running vulnerable Thrive Themes Read More »
The Mozilla Foundation has released Firefox 87 that introduces a new feature ‘SmartBlock for Private Browsing’ along with security fixes for two High risk vulnerabilities.
Firefox 87 adds SmartBlock for Private Browsing Read More »
Energy giant Shell was the latest victim in a series of cyberattacks on customers of Accellion’s legacy File Transfer Appliance (FTA) product used to transfer large files.
Energy giant Shell latest victim in Accellion FTA cyberattacks Read More »
Adobe has released a security update to address a Critical vulnerability CVE-2021-21087 in Adobe ColdFusion.
Adobe patches Critical ColdFusion vulnerability (CVE-2021-21087) Read More »
Security researchers are warning of mass scans and active exploits of a Critical vulnerability on F5 BIG-IP and BIG-IQ infrastructure. F5 patched the Critical remote code execution vulnerability CVE-2021-22986 nearly two weeks ago when the networking company confirmed an unauthenticated attacker could exploit the vulnerability.
Critical F5 BIG-IP vulnerability (CVE-2021-22986) under active attack Read More »
The Federal Bureau of Investigation (FBI) has warned of PYSA Ransomware attacks against schools located in the United States and United Kingdom.
FBI warns of PYSA Ransomware attacks against schools in the U.S. and U.K. Read More »
The DHS CISA cybersecurity team just released a new tool dubbed CHIRP, a forensics collection tool designed to help network defenders scan for indicators of compromise (IOCs) associated with the SolarWinds Orion and Active Directory/M365 compromise and cyberattacks.
