Category: alerts

Oliver Tavakoli, CTO at Vectra, lays out the different layers of ransomware defense all companies should implement. Read more

The issue affects a range of Cisco Wireless-N and Wireless-AC VPN routers that have reached end-of-life. Read more

Microsoft first dismissed the elevation of privilege flaw but decided yesterday that attackers injecting malicious code is worthy of attention. Read more

Original release date: August 19, 2021 The Internet Systems Consortium (ISC) has released a security advisory that addresses a vulnerability affecting multiple versions of the ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit this vulnerability to cause a denial-of-service condition. CISA encourages users and administrators to review ISC advisory CVE-2021-25218 and apply the… Read more

Government says cybersecurity failures were many within failed January hack of U.S. Census Bureau systems. Read more

The once-dominant handset maker BlackBerry is busy squashing BadAlloc bugs in its QNX real-time operating system used in cars in medical devices. Read more

Original release date: August 18, 2021 Mozilla has released security updates to address vulnerabilities in Firefox 91.0.1 and Thunderbird 91.0.1. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Mozilla Security Advisory 2021-37 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy. Read more

Original release date: August 18, 2021 Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates: APSB21-60 Captivate APSB21-65 XMP Toolkit SDK APSB21-68… Read more

The OS command-injection bug, in the web application firewall (WAF) platform known as FortiWeb, will get a patch at the end of the month. Read more

Yaron Kassner, CTO at Silverfort, discusses authentication-bypass bugs in Cisco ASA, F5 Big-IP, IBM QRadar and Palo Alto Networks PAN-OS. Read more