Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days – Tempemail

Apple on Thursday released security updates to fix multiple security vulnerabilities in older versions of iOS and macOS that it says have been detected in exploits in the wild, in addition to expanding patches for a previously plugged security weakness abused by NSO Group’s Pegasus surveillance tool to target iPhone Continue Reading

Update Your Windows PCs to Patch 117 New Flaws, Including 9 Zero-Days – Tempemail

Microsoft rolled out Patch Tuesday updates for the month of July with fixes for a total of 117 security vulnerabilities, including nine zero-day flaws, of which four are said to be under active attacks in the wild, potentially enabling an adversary to take control of affected systems. Of the 117 Continue Reading

Hackers Exploit Accellion Zero-Days in Recent Data Theft and Extortion Attacks – Tempemail

Cybersecurity researchers on Monday tied a string of attacks targeting Accellion File Transfer Appliance (FTA) servers over the past two months to data theft and extortion campaign orchestrated by a cybercrime group called UNC2546. The attacks, which began in mid-December 2020, involved exploiting multiple zero-day vulnerabilities in the legacy FTA Continue Reading

Network zero-days leave millions of IoT devices open to abuse – Security- Tempemail

Security researchers analysing a network stack used in hundreds of millions of devices found that it contained serious vulnerabilities that could be exploited by attackers for remote code execution and data exfiltration. The software library is made by Treck, which specalises in transmission control protocol/internet protocol (TCP/IP) networking stacks for Continue Reading

Microsoft patches exploited Windows zero-days – Security- Tempemail

Microsoft’s regular Patch Wednesday collection of security fixes for the Windows operating system and related software products closes four serious vulnerabilties classed as zero-days. Three of the vulnerabilties are currently being exploited by unknown threat actors, Microsoft said. Two of the flaws affect the Adobe Type Manager Library that ships Continue Reading