Google releases Chrome security update (79.0.3945.88)
Google has released Chrome 79.0.3945.88 for Windows, Mac and Linux. The update includes one security fix. The company also added a Chrome browser update for Android.
TP-Link Archer router vulnerability fixed
TP-Link has patched a vulnerability in multiple Archer router models that could allow attackers to login without passwords.
WordPress 5.3.1 security update
WordPress has released version 5.3.1 security update that fixes multiple bugs. All WordPress versions 5.3 and earlier are affected.
GALLIUM targets global telecom providers
Microsoft has revealed new cyber threat activity by a group dubbed GALLIUM that targets global telecommunication providers and unpatched web servers.
Apple security updates for iOS 13.3, macOS Catalina 10.15.2 and other products
Apple has released security updates for iOS 13.3 and macOS Catalina 10.15.2, as well as other products to include Safari, watchOS, tvOS, iTunes, iCloud and Xcode.
Adobe security updates for multiple products
Adobe has released security updates for multiple products to include Adobe Acrobat and Reader, Photoshop CC, ColdFusion and Brackets.
Google releases Chrome 79 (includes 51 security fixes)
Google has released Chrome 79 (version 79.0.3945.79) for Windows, Mac and Linux. The update includes a number of fixes and improvements in the popular browser. The company also added a Chrome browser update for Android.
Microsoft December 2019 Security Updates (includes fix for one active exploit)
Microsoft issued the December 2019 Security Updates that include 36 unique vulnerability fixes, 7 of those rated critical and 29 rated important. One of the patches addresses a Win32k vulnerability under active attack in the wild.
VMware ESXi and Horizon DaaS Critical security updates
VMware has released security updates to address a Critical OpenSLP remote code execution vulnerability (CVE-2019-5544) in ESXi and Horizon DaaS.
ROCA attack and TPM vulnerability impacts Windows Hello for Business
Microsoft has issued a security advisory for vulnerability CVE-2017-15361 that impacts certain Trusted Platform Module (TPM) chipsets and used for Windows Hello for Business. The company issued steps to detect and mitigate the issue.