Apple iOS 14.4.2 security update fixes zero-day vulnerability exploited in the wild
Apple has fixed a zero-day vulnerability CVE-2021-1879 exploited in the wild in the latest security updates for iOS iOS 14.4.2, iPadOS 14.4.2, and watchOS 7.3.3.
Google releases Chrome security update (86.0.4240.111)
Google has released Chrome 86.0.4240.111 security update for Windows, Mac and Linux. An attacker could exploit these vulnerabilities to take control of impacted systems.
BIND fixes DoS-related vulnerabilities
The Internet Systems Consortium (ISC) has released security updates that fix five vulnerabilities in multiple versions of ISC Berkeley Internet Name Domain (BIND) that could result in denial-of-service (DoS) condition.…
FBI issues Flash Alert on Netwalker ransomware
The Federal Bureau of Investigation (FBI) issued a Flash Alert warning for Netwalker Ransomware attacks against U.S. and foreign organizations.
Microsoft June 2020 Security Updates (and a Critical Adobe Flash patch)
Microsoft released the June 2020 Security Updates that includes 128 unique vulnerability fixes, 11 of those rated critical. In addition, Adobe patched a Critical vulnerability in Adobe Flash.
CallStranger UPnP vulnerability affects multiple internet-facing products
The CERT Coordination Center issued a new advisory for a UPnP configuration vulnerability CVE-2020-12695 that could allow an attacker to abuse devices and send traffic to arbitrary destinations. As a result, devices connected to the internet with UPnP enabled could expose additional vulnerabilities that could lead to amplified DDoS attacks and data loss.
Experts warn users to secure internet-connected cameras
Security experts from the United Kingdom (UK) National Cyber Security Centre (NCSC) issued a security advisory urging users to secure internet-connected cameras, such as home smart cameras and baby monitors.
Critical Point-to-Point Protocol Daemon (pppd) vulnerability
Researchers at the CERT Coordination Center (CERT/CC) have released details on a critical Point-to-Point Protocol Daemon (pppd) vulnerability CVE-2020-8597.
Adobe patches critical vulnerabilities in Adobe After Effects and Media Encoder
Adobe has released security updates for critical vulnerabilities in Adobe After Effects and Media Encoder products.
Zoom patches vulnerability that could allow eavesdropping
Remote conferencing service company, Zoom, has patched a vulnerability that could allow a bad actor to eavesdrop on your company's online meetings.