TFlower ransomware targets companies via exposed RDS
A new ransomware dubbed TFlower has been targeting corporate environments via exposed remote desktop services (RDS).
Top 3 AWS security configuration mistakes
Cloud security experts from Palo Alto Networks have warned about three critical misconfigurations that are most common in most organizations and have contributed to the majority of cloud attacks.
Chrome security update (77.0.3865.90)
Google has released a new security update for Chrome browser 77.0.3865.90 for Windows, Mac and Linux. The latest update released on September 18 includes four security fixes. One of the…
VMware patches multiple ESXi and vCenter Server vulnerabilities
VMware issued a security advisory for multiple vulnerabilities that impact VMware ESXi and vCenter Server products. The vulnerability severity ranges from a CVSS base score of 4.2 to 7.7.
LastPass security update fixes credential leak bug
LastPass released a new security update that fixes a vulnerability that exposes credentials from a previously visited website. The new version 4.33.0 was released on September 12.
Watchbog targets unpatched systems
Security experts have uncovered an incident that involved the Watchbog cryptomining botnet. Attackers exploited CVE-2018-1000861 to establish a foothold on the victim's network and install Watchbog malware on unpatched systems.
Google releases Chrome 77 (with 52 security fixes)
Google has released Chrome 77 (version 77.0.3865.75) for Windows, Mac and Linux. The update includes a number of fixes and improvements in the popular browser. The company also added a Chrome browser update for Android.
Microsoft September 2019 Security Updates
Microsoft issued the September 2019 Security Updates that include 79 unique vulnerability fixes, 17 of those rated critical. In addition, two of the patches address two 0-day Privileged Escalation vulnerabilities CVE-2019-1214 and CVE-2019-1215.
NETGEAR denial-of-service vulnerabilities fixed (CVE-2019-5054, CVE-2019-5055)
Researchers have discovered two denial of service (DoS) vulnerabilities in NETGEAR N300 home wireless routers. NETGEAR has issued firmware updates to address the issues.
WordPress 5.2.3 security and maintenance update
WordPress 5.2.3 Security and Maintenance Release is now out. The update includes 29 feature enhancements and fixes, as well as security fixes.