Microsoft has released emergency out-of-band security updates to fix multiple Critical vulnerabilities impacting Microsoft Exchange Server 2013, 2016 and 2019. The tech giant also published interim mitigations if organizations can not patch immediately, as well as an IOC detection tool.
Google has released a new Chrome 89 security update (89.0.4389.72) for Windows, Mac and Linux with fixes for multiple vulnerabilities, to include one zero-day vulnerability CVE-2021-21166 exploited in the wild.
Cyber attackers have been exploiting Accellion File Transfer (FTA) appliance 0-day vulnerabilities to steal data and threaten their victims with extortion attempts.
Adobe has released security updates to address multiple vulnerabilities in Adobe Acrobat and Reader, as well as Magento, Photoshop, Animate, Illustrator and Dreamweaver. Moreover, the software giant addressed one Critical vulnerability CVE-2021-21017 exploited in the wild.
Google has released a new Chrome 88 security update (88.0.4324.150) for Windows, Mac and Linux with a fix for a zero-day vulnerability CVE-2021-21148 exploited in the wild.
SonicWall has released an urgent patch for a Critical SonicWall SMA 100 Series version 10.x zero-day vulnerability CVE-2021-20016.
Apple has released macOS Big Sur 11.2, Security Update 2021-001 Catalina, and Security Update 2021-001 Mojave to address multiple vulnerabilities, including three zero-days.
Apple has released security updates to fix vulnerabilities in iOS 14.4, watchOS 7.3, Xcode 12.4, iCloud for Windows 12.0 and tvOS 14.4. As part of the updates, the tech giant also addressed three zero-day iOS vulnerabilities exploited in the wild.
Google has released Chrome 86.0.4240.183 security update for Windows, Mac and Linux. The update also addresses a High severity zero-day vulnerability that is being exploited in the wild.
Microsoft has released a security update for its Chromium-based Edge browser to address multiple vulnerabilities, one of those exploited in the wild (CVE-2020-15999).