Check Point Research has revealed that Trickbot is once again the most popular malware, according to a Global Threat Index report for September 2021. A remote access trojan, njRAT, was also added to the top 10 report for first time ever.
The Mozilla Foundation has patched four High risk vulnerabilities in Firefox 93, as well as added security feature that blocks unsafe downloads.
The Apache HTTP Server Foundation has patched a path traversal and file disclosure vulnerability (CVE-2021-41773) in Apache HTTP Server 2.4.49.
A new advanced persistent threat (APT) group dubbed ChamelGang has been targeting Russian Energy and Aviation industries, as well as entities in 9 other countries.
Google has released Chrome 94 security update (94.0.4606.71) with patches for 2 zero-day vulnerabilities (CVE-2021-37975 and CVE-2021-37976) exploited in the wild.
Cisco has fixed three Critical risk Cisco IOS XE Software vulnerabilities in multiple network products, as well as three High risk SD-WAN vEdge vulnerabilities.
VMware issued a security advisory for multiple vulnerabilities that impact VMware vCenter Server. One of those fixed issues is a Critical vulnerability (CVE-2021-22005) exploited in the wild.
Apple has released security updates to fix vulnerabilities in iOS 12.5.5 and macOS Catalina. The tech giant also warned of active exploits in the wild against some vulnerabilities.
Google has released Chrome 94 security update (94.0.4606.61) with a fix for one zero-day vulnerability CVE-2021-37973 under attack.
Apple has released security updates to fix vulnerabilities in iOS 15, Safari 15, watchOS 8, iTunes 12.12 for Windows, Xcode 13, and tvOS 15.