Apple releases iOS 14.0 with new privacy features and security updates for multiple products

Apple has released security updates to address vulnerabilities in iOS 14.0, iPadOS 14.0, watchOS 7.0, Safari 14.0, tvOS 14.0 and Xcode 12.0. Apple also added new Privacy features for iOS 14.0.

Continue Reading Apple releases iOS 14.0 with new privacy features and security updates for multiple products

Exploit code available for ‘Zerologon’ vulnerability (CVE-2020-1472) that affects Microsoft Netlogon

The Cybersecurity and Infrastructure Security Agency (CISA) issued a new security advisory warning of publicly available exploit code for a Microsoft Netlogon vulnerability CVE-2020-1472. Researchers have dubbed the vulnerability 'Netlogon' that could allow attackers to hijack Windows domain controllers.

Continue Reading Exploit code available for ‘Zerologon’ vulnerability (CVE-2020-1472) that affects Microsoft Netlogon

Chinese threat actors targeting U.S. government agencies and these 4 CVEs

Chinese Ministry of State Security (MSS)-affiliated cyber threat actors are targeting U.S. government agencies, as well as exploiting four popular vulnerabilities over the past 12 months.

Continue Reading Chinese threat actors targeting U.S. government agencies and these 4 CVEs

Palo Alto Networks fixes Critical PAN-OS vulnerability (CVE-2020-2040)

Palo Alto Networks has fixed a Critical buffer overflow vulnerability that could allow an attacker to execute remote code as root on PAN-OS devices, along with multiple other High severity issues.

Continue Reading Palo Alto Networks fixes Critical PAN-OS vulnerability (CVE-2020-2040)

Critical File Manager plugin vulnerability affects 700k WordPress Websites

Developers have updated the WordPress plugin File Manager to fix a critical vulnerability that could have allowed hackers to gain complete access to nearly 700 thousand WordPress websites.

Continue Reading Critical File Manager plugin vulnerability affects 700k WordPress Websites