Vulnerabilities & Exploits

Drupal patches 2 Critical arbitrary PHP code execution vulnerabilities

• Post author:Frank Crast
• Post published:November 27, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Drupal has released a security update that fixes two Critical arbitrary PHP code execution vulnerabilities (CVE-2020-28949 and CVE-2020-28948) in multiple versions of Drupal.

Continue Reading Drupal patches 2 Critical arbitrary PHP code execution vulnerabilities

Egregor Ransomware targets retail giant Cencosud, prints ransomware notes

• Post author:Frank Crast
• Post published:November 23, 2020
• Post category:Cybersecurity Attacks/Vulnerabilities & Exploits

Latin American retail giant Cencosud has suffered a ransomware attack by Egregor ransomware operators earlier this month that has impacted services in stores in multiple countries.

Continue Reading Egregor Ransomware targets retail giant Cencosud, prints ransomware notes

VMware patches 6 VMware SD-WAN Orchestrator vulnerabilities

• Post author:Frank Crast
• Post published:November 23, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

VMware has patched six vulnerabilities that affect VMware SD-WAN Orchestrator. An attacker could exploit this vulnerability and take control of an unpatched system.

Continue Reading VMware patches 6 VMware SD-WAN Orchestrator vulnerabilities

Drupal patches Critical RCE vulnerability (CVE-2020-13671)

• Post author:Frank Crast
• Post published:November 23, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Drupal has released a security update that fixes a Critical RCE vulnerability CVE-2020-13671 in multiple versions of Drupal.

Continue Reading Drupal patches Critical RCE vulnerability (CVE-2020-13671)

Mozilla releases Firefox 83, fixes for 4 High risk vulnerabilities

• Post author:Frank Crast
• Post published:November 20, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

The Mozilla Foundation has released Firefox 83 that includes security fixes for 4 High risk vulnerabilities.

Continue Reading Mozilla releases Firefox 83, fixes for 4 High risk vulnerabilities

Chrome 87 security update fixes 33 vulnerabilities

• Post author:Frank Crast
• Post published:November 20, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Google has released Chrome 87 security update (87.0.4280.66 for Windows and Linux, 87.0.4280.67 for Mac) with fixes for 33 vulnerabilities. The tech giant also released a new Chrome 87 version for both iOS and Android.

Continue Reading Chrome 87 security update fixes 33 vulnerabilities

Cisco patches 3 Critical vulnerabilities in IMC, DNA Spaces Connector and IoT products

• Post author:Frank Crast
• Post published:November 19, 2020
• Post category:Internet of Things (IoT)/Network Security/Security Updates & Patches/Vulnerabilities & Exploits

Cisco has patched three Critical vulnerabilities in Cisco Integrated Management Controller (IMC), DNA Spaces Connector and IoT Field Network Director (FND) products.

Continue Reading Cisco patches 3 Critical vulnerabilities in IMC, DNA Spaces Connector and IoT products

Cisco patches 3 Security Manager vulnerabilities

• Post author:Frank Crast
• Post published:November 18, 2020
• Post category:Network Security/Security Updates & Patches/Vulnerabilities & Exploits

Cisco has patched three Cisco Security Manager vulnerabilities, one rated Critical and two High severity, that could allow a remote attacker to exploit and obtain sensitive information.

Continue Reading Cisco patches 3 Security Manager vulnerabilities

New version of CRAT remote access trojan targets endpoints

• Post author:Frank Crast
• Post published:November 17, 2020
• Post category:Cybersecurity Attacks/Malware/Vulnerabilities & Exploits

Security researchers from Cisco have discovered a new version of remote access trojan (RAT) dubbed "CRAT" that targets endpoints.

Continue Reading New version of CRAT remote access trojan targets endpoints

Apple security updates for new macOS Big Sur 11.0.1 and Safari 14.0.1

• Post author:Frank Crast
• Post published:November 14, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Apple released security updates for new macOS Big Sur 11.0.1 and Safari 14.0.1. The tech giant also issued updates for macOS High Sierra 10.13.6 and macOS Mojave 10.14.6.

Continue Reading Apple security updates for new macOS Big Sur 11.0.1 and Safari 14.0.1