Google has released Chrome 80.0.3987.149 for Windows, Mac and Linux, as well as a new version of Chrome for Android. The update addresses 13 security fixes to include 9 High severity vulnerabilities.
Adobe has released security updates for ColdFusion, PhotoShop, Acrobat and Reader, Genuine Integrity Service, Experience Manager and Bridge products.
Trend Micro has patched five vulnerabilities in multiple products. The updates address two zero-days - one Critical risk vulnerability CVE-2020-8467 and another High risk vulnerability CVE-2020-8468 under active attack in the wild. In addition, the company also patched three other Critical vulnerabilities that require no authentication to exploit.
VMware has released patches for a critical vulnerability in VMware Workstation and Fusion products. The company also fixed high severity vulnerabilities in VMware Horizon Client for Windows and VMRC for Windows.
In the wake of Coronavirus / COVID-19 pandemic, Microsoft has issued sound guidance for security leaders to improve remote worker security. Tech companies are also offering small businesses free access to online collaboration tools during the outbreak.
To prepare for possible impacts of Coronavirus Disease 2019 (COVID-19), more organizations are electing to have their employees work remotely from home. With that responsibility, more organizations will need to adopt a heightened level of security to protect themselves from attackers who look to exploit weaknesses in enterprise virtual private networks (VPNs).
Microsoft released the March 2020 Security Updates that include 115 unique vulnerability fixes, 26 of those rated critical. This is the largest patch release in Microsoft's history. Microsoft also issued guidance and a new security update to fix an SMBv3 RCE vulnerability dubbed SMBGhost.
The Mozilla Foundation has released Firefox 74 that addresses multiple vulnerabilities. Attackers could exploit some of the vulnerabilities to take control of impacted systems.
Security experts from the United Kingdom (UK) National Cyber Security Centre (NCSC) issued a security advisory urging users to secure internet-connected cameras, such as home smart cameras and baby monitors.
Researchers at the CERT Coordination Center (CERT/CC) have released details on a critical Point-to-Point Protocol Daemon (pppd) vulnerability CVE-2020-8597.