Author: DEFENDEDGE

Major browsers get an update to fix separate bugs that both allow for remote attacks, which could potentially allow hackers to takeover targeted devices. Read more

In all, Nvidia patched flaws tied to 16 CVEs across its graphics drivers and vGPU software, in its first security update of 2021. Read more

Provide your views on ransomware and how to deal with it in our anonymous Threatpost poll. Read more

Original release date: January 7, 2021 Mozilla has released security updates to address a vulnerability in Firefox, Firefox for Android, and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system.   CISA encourages users and administrators to review the Mozilla Security Advisory and apply the necessary updates. This product… Read more

The NSA released new guidance providing system administrators with the tools to update outdated TLS protocols. Read more

Original release date: January 6, 2021 CISA has released Emergency Directive (ED) 21-01 Supplemental Guidance version 3: Mitigate SolarWinds Orion Code Compromise, providing guidance that supersedes Required Action 4 of ED 21-01 and Supplemental Guidance versions 1 and 2. Federal agencies without evidence of adversary follow-on activity on their networks that accept the risk of… Read more

More than 100,000 Zyxel networking products could be vulnerable to a hardcoded credential vulnerability (CVE-2020-29583) potentially allowing cybercriminal device takeover. Read more

Report outlines deep cybersecurity challenges for the public/private seagoing sector. Read more

The widespread compromise affecting key government agencies is ongoing, according to the U.S. government. Read more

Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases. Read more