Microsoft issues new guidance on OMI vulnerabilities within Azure VM Management extensions

Post published:September 18, 2021
Post category:Cloud Security Security Updates & Patches Vulnerabilities & Exploits

Microsoft has published new guidance on Open Management Infrastructure (OMI) vulnerabilities within Azure virtual management (VM) Management extensions.

Drupal fixes 5 Moderately Critical vulnerabilities

Post published:September 17, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

Drupal has patched five Moderately Critical cross site request forgery and access bypass vulnerabilities that affect multiple versions of Drupal Core.

Google releases Chrome 93 security update (93.0.4577.82) with fixes for 2 zero-days under attack

Post published:September 15, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits Zero-days

Google has released Chrome 93 security update (93.0.4577.82) with fixes for 2 zero-day vulnerabilities (CVE-2021-30632 and CVE-2021-30633) under attack.

Microsoft September 2021 Security Updates includes fix for an RCE bug in MSHTML under active attack

Post published:September 15, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits Zero-days

Microsoft has released the September 2021 Security updates that includes patches for 66 vulnerabilities, 3 of those rated Critical. The updates also include a fix for one zero-day bug in MSHTML (CVE-2021-40444) exploited in the wild.

Adobe September 2021 updates include fixes for Adobe Acrobat and Reader, 14 other products

Post published:September 15, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

The Adobe September 2021 updates include fixes for Adobe Acrobat and Reader and 14 other products.

Microsoft warns of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444) — Updated

Post published:September 15, 2021
Post category:Vulnerabilities & Exploits Zero-days

Microsoft has warned of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444). The tech giant also released workarounds for the threat until a permanent fix is released.

Apple security updates for iOS 14.8, macOS Big Sur 11.6 and other products (warns of active exploits in the wild)

Post published:September 14, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits Zero-days

Apple has released security updates to fix vulnerabilities in iOS 14.8, macOS Big Sur 11.6, Safari 14.1.2, watchOS 7.6.2, and other products. The tech giant also warned of active exploits in the wild against some vulnerabilities.

Sidewalk backdoor linked to Grayfly espionage group

Post published:September 13, 2021
Post category:Cybercrime Cybersecurity Attacks Malware Vulnerabilities & Exploits

Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.

WordPress security update (5.8.1) fixes 3 vulnerabilities

Post published:September 11, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

WordPress has released WordPress 5.8.1 security and maintenance update that includes fixes for 3 security vulnerabilities and 60 bugs. All WordPress versions between 5.4 and 5. 8 are affected.

Citrix Hypervisor security updates

Post published:September 10, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may collectively allow an attacker to launch privileged code in a guest VM to compromise or crash the host.