An equally impressive update was released by Google as part of the January patch for Android.
An equally impressive update was released by Google as part of the January patch for Android.
Microsoft's January PatchTuesday was released with fixes for a record 98 documented software vulnerabilities.
Microsoft's January PatchTuesday was released with fixes for a record 98 documented software vulnerabilities. Eleven of them are classified as critical, including 0-day, of which 39 are privilege escalation, 4 are security bypassing, 33 are RCE, 10 are information disclosure, 10 are DoS and 2 are spoofing.
Potentially serious UEFI firmware vulnerabilities in Qualcomm Snapdragon chips affect many devices manufactured by Microsoft
Potentially serious UEFI firmware vulnerabilities in Qualcomm Snapdragon chips affect many devices manufactured by Microsoft, Lenovo, Samsung and many other companies.
If Villariba and Villabaggio had suffered from the MegaCortex ransomware
If Villariba and Villabaggio had suffered from the MegaCortex ransomware, then they would really have had a holiday, since the specialists of the Romanian antivirus company Bitdefender released a free decryptor.
Symantec researchers report details about the activities of a cybercrime group they track as Bluebottle
Symantec researchers report details about the activities of a cybercrime group they track as Bluebottle, revealing significant similarities to the TTP gang OPERA1ER.
Auth0 fixed an RCE vulnerability in the popular open source library JsonWebToken
Auth0 fixed an RCE vulnerability in the popular open source library JsonWebToken, which was used in more than 22,000 projects and downloaded more than 36 million times a month on NPM.
Air France and KLM have informed Flying Blue
Air France and KLM have informed Flying Blue customers about a cyber incident that resulted in their accounts being compromised and personal information being disclosed.
K7 Security Labs resellers have discovered a campaign by an unknown actor
K7 Security Labs resellers have discovered a campaign by an unknown actor, presumably based in China, who uses Windows Problem Reporting (WerFault.exe ) to launch remote administration tools.
Automakers in pursuit of active and passive safety at the time would like to think about information.
Automakers in pursuit of active and passive safety at the time would like to think about information. While BMW, Mercedes, Toyota and other popular manufacturers were engaged in crash tests of their cars, cybersecurity researcher Sam Curry and his colleagues discovered many vulnerabilities in cars and services implemented by automotive solution providers.
The corporate communication and collaboration platform Slack
The corporate communication and collaboration platform Slack reported a cyber incident that occurred during the holidays and affected some of its repositories on GitHub, about which the company notified customers.
The Taiwanese NAS manufacturer Synology
The Taiwanese NAS manufacturer Synology has eliminated the vulnerability of the maximum (10/10) severity in VPN routers, as well as vulnerabilities that were probably recently used at the Pwn2Own hacking contest.
On New Year's Eve, the Poles put some cranberry infosec under the Christmas tree.
On New Year's Eve, the Poles put some cranberry infosec under the Christmas tree. So, on December 30, gov.pl published news about Russian cyberattacks on Polish information resources.
Well, hello in 2023!
Well, hello in 2023! It's time to get down to business again! The year has just begun, and a lot of events have already happened, to which our publications will be devoted in the coming days.
On Christmas Day, Portugal's third largest port was subjected to a cyberattack.
On Christmas Day, Portugal's third largest port was subjected to a cyberattack. The Portuguese authorities did not specify details. Everything became obvious when the Port of Lisbon ended up on DLS LockBit, which demanded about $ 1.5 million in ransom.
Netgear has fixed a serious vulnerability affecting Wi-Fi routers
Netgear has fixed a serious vulnerability affecting Wi-Fi routers and advised customers to update the software on their devices as soon as possible.
