Category: alerts
Category Added in a WPeMatico Campaign
-
Adobe Patches Slew of Critical Security Bugs in Bridge, Photoshop
The security bugs could open the door for arbitrary code-execution and full takeover of targeted machines. Read more
-
Chrome Zero-Day Exploit Posted on Twitter
An update to Google’s browser that fixes the flaw is expected to be released on Tuesday. Read more
-
Vulnerability Summary for the Week of April 5, 2021
Original release date: April 12, 2021 High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info apple — ipad_os An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. 2021-04-02… Read more
-
Network Detection & Response: The Next Frontier in Fighting the Human Problem
Justin Jett, director of audit and compliance for Plixer, discusses the transformation of network-traffic analytics and what it means for cybersecurity now. Read more
-
Zero-Day Bug Impacts Problem-Plagued Cisco SOHO Routers
Cisco says it will not patch three small business router models and one VPN firewall device with critical vulnerabilities. Read more
-
Using Aviary to Analyze Post-Compromise Threat Activity in M365 Environments
Original release date: April 8, 2021 Aviary is a new dashboard that CISA and partners developed to help visualize and analyze outputs from its Sparrow detection tool released in December 2020. Sparrow helps network defenders detect possible compromised accounts and applications in Azure/Microsoft O365 environments. CISA created Sparrow to support hunts for threat activity following… Read more
-
Azure Functions Weakness Allows Privilege Escalation
Microsoft’s cloud-container technology allows attackers to directly write to files, researchers said. Read more
-
Hackers Exploit Fortinet Flaw in Sophisticated Cring Ransomware Attacks
Industrial enterprises in Europe are target of campaign, which forced a shutdown of industrial processes in at least one of its victims’ networks, according to researchers. Read more
-
Facebook: Stolen Data Scraped from Platform in 2019
The flaw that caused the leak of personal data of more than 533 million users over the weekend no longer exists; however, the social media giant still faces an investigation by EU regulators. Read more
-
Critical Cloud Bug in VMWare Carbon Black Allows Takeover
CVE-2021-21982 affects a platform designed to secure private clouds, and the virtual servers and workloads that they contain. Read more