BusyBox vulnerabilities impact embedded Linux OS used in IoT and OT devices

Post published:November 9, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

Researchers have discovered 14 BusyBox vulnerabilities that impact embedded Linux OS used in many internet of things (IoT) and operational technology (OT) devices.

New Proof of Concept tool demos BrakTooth vulnerability exploits

Post published:November 8, 2021
Post category:Network Security Vulnerabilities & Exploits

Security researchers have released a new Proof of Concept (PoC) tool that demonstrates BrakTooth vulnerability exploits against Bluetooth-enabled devices.

Mozilla releases Firefox 94 with fixes for 7 High severity vulnerabilities

Post published:November 4, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

The Mozilla Foundation has patched seven High risk vulnerabilities in Firefox 94, as well as added a security feature site isolation that guards against side-channel attacks.

Shrootless vulnerability can bypass macOS System Integrity Protection

Post published:November 4, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

Security researchers from Microsoft have discovered a vulnerability dubbed "Shrootless" that can bypass macOS System Integrity Protection (SIP).

Google patches Android zero-day vulnerability exploited in the wild

Post published:November 3, 2021
Post category:Mobile Security Security Updates & Patches Vulnerabilities & Exploits Zero-days

Google has released the Android Security Bulletin for November 2021 with patches for 36 vulnerabilities, to include five High risk bugs and one zero-day being exploited in the wild.

GoCD patches ‘Highly Critical’ authentication vulnerability

Post published:October 29, 2021
Post category:Application Security Security Updates & Patches Vulnerabilities & Exploits

GoCD has patched a Critical authentication vulnerability in its GoCD CI/CD tool.

BIND fixes lame cache vulnerability (CVE-2021-25219)

Post published:October 29, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

The Internet Systems Consortium (ISC) has released a security update that fixes a lame cache vulnerability in multiple versions of ISC Berkeley Internet Name Domain (BIND).

Google releases Chrome 95 security update (95.0.4638.69) with fixes for 2 High risk zero-days exploited in the wild

Post published:October 29, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits Zero-days

Google has released Chrome 95 security update (95.0.4638.69) for Windows, Mac and Linux with fixes for multiple High risk vulnerabilities, 2 of those are being exploited in the wild.

Adobe security updates for Adobe Photoshop, Illustrator and 12 other products

Post published:October 27, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

Adobe has released security updates for Adobe Photoshop, Illustrator and 12 other products.

Apples releases security updates for iOS 15.1, macOS Big Sur 11.6.1, and new macOS Monterey 12.0.1

Post published:October 27, 2021
Post category:Security Updates & Patches Vulnerabilities & Exploits

Apples has released security updates for iOS 15.1, macOS Big Sur 11.6.1, new macOS Monterey 12.0.1, and other Apple products.