Trend Micro has released a new service pack for Apex One product that resolves multiple vulnerabilities in the product. The addressed vulnerabilities could allow the remote attacker to perform several attacks, like bypassing security restrictions, elevating privileges, and causing a denial of service on the affected system. Sample of addressed vulnerabilities : 1 -Trend Micro […]
Trend Micro Security Update – 14 September 2022 Read More »
Zoom has released security updates to fix vulnerabilities in Zoom On-Premise Meeting Connector (MMR) products. The remote attacker could exploit these vulnerabilities to obtain information from the affected system. The severity of the addressed vulnerabilities could allow the remote attacker to obtain sensitive information, caused by improper access control and use this information to launch
Zoom Security Updates – 14 September 2022 Read More »
SAP has released security updates to address several vulnerabilities affecting multiple products. In addition, SAP also announced (5) updates to the previously released patch day security note. This month’s patch fixes several vulnerabilities affecting multiple SAP products such as SAP Business One, SAP BusinessObjects Business Intelligence Platform, SAP Access Control, SAP NetWeaver Enterprise Portal (KMC),
SAP September 2022 Security Patch Day Read More »
Apple has released security updates to address multiple vulnerabilities in the updated version of macOS Monterey 12.6, macOS Big Sur 11.7, and Safari 16. The remote attacker could exploit these vulnerabilities to take control of the affected system. The severity of the addressed vulnerabilities could allow the attackers to perform several attacks like bypassing security
Apple Security Updates – 13 September 2022 Read More »
Cuba is a ransomware family that appends the .cuba file extension to encrypted files. When executed this malware terminates services associated with common server applications and encrypts files on the local filesystem and attached network drives using an embedded RSA key. Cuba ransomware operation has increased its activity recently and started to target financial organizations
Cuba Ransomware – 08 September 2022 Read More »
Cisco has released security updates to address several vulnerabilities in multiple Cisco products. The remote attacker could exploit some of these vulnerabilities to take control of the affected system. The released updates to fix multiple vulnerabilities affecting Cisco devices if they are running a vulnerable release of Cisco SD-WAN vManage Software, Cisco Catalyst 8000V Edge
Cisco Released Security Updates – 8 September 2022 Read More »
Fortinet has released security updates to fix several vulnerabilities across multiple products. The remote attacker could exploit some of these vulnerabilities to take control of the affected system and cause a denial of service attacks. Sample of the addressed vulnerabilities: FortiAP & FortiAP-S & FortiAP-W2 & FortiAP-U – Command injection in CLI (CVE-2022-29058): CVSS: 7.8
Fortinet Security Updates – 06 September 2022 Read More »
Google has released an updated Chrome version (105.0.5195.102) for Windows, Mac, and Linux to fix one vulnerability. The remote attacker could exploit this vulnerability to take control of the affected system and bypass security. Google released an emergency update for the company’s Chrome web browser. The update addresses a security issue in the browser that
Google Chrome Security Update – 04 September 2022 Read More »
Agenda is a new Golang-based ransomware detected in the wild targeting entities and enterprises in Asia, Africa, and the Middle East. Security researchers spotted this ransomware to be customized per victim. Security researchers have spotted a new ransomware dupped “Agenda” that was customized for each victim, and it was written in the Go programming language,
Agenda New Golang Ransomware Read More »
Google has released an updated Chrome version (105.0.5195.52/53/54) for Windows and (105.0.5195.52) for (Mac/Linux) to fix several vulnerabilities. The remote attacker could exploit these vulnerabilities to take control of the affected system and bypass security. The severity of the addressed vulnerabilities could allow the remote attacker to execute arbitrary code or cause a denial of
Google Chrome Security Updates – 31 August 2022 Read More »
Broadcom Symantec has released security updates to address a new vulnerability. The remote attacker could exploit this vulnerability to take control of the affected system and gain elevated privileges. The addressed vulnerability could allow the attacker to gain access to affected PAMconfiguration endpoints with reading and writing permissions when multi-factor authentication (MFA) is enabled. Privileged
Broadcom Symantec Security Updates – 30 August 2022 Read More »
Cisco has released security updates to address several vulnerabilities in multiple Cisco products. The remote attacker could exploit some of these vulnerabilities to take control of the affected system. The released updates to fix multiple vulnerabilities affecting Cisco FXOS Software, Cisco NX-OS Software and Cisco ACI Multi-Site Orchestrator (MSO). The addressed vulnerabilities could allow the
Cisco Released Security Updates – 25 August 2022 Read More »
VMware has released a security update to address a vulnerability in VMware Tools. VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. The addressed vulnerability could allow the local non-administrative attacker to escalate privileges as a root user in the virtual machine. The Addressed vulnerability: VMware Tools Local Privilege Escalation Vulnerability (CVE-2022-31676):
VMware Security Update – 24 August 2022 Read More »
Mozilla has released security updates to fix vulnerabilities in Firefox , Firefox ESR and Thunderbird. The remote attacker could exploit these vulnerabilities to gain access, escalate privileges, and bypass security controls. Sample of The Addressed Vulnerabilities: Mozilla Firefox security bypass (CVE-2022-38473): CVSS: 8.8 Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required
Mozilla Security Updates – 24 August 2022 Read More »
Apple has released security updates to address multiple vulnerabilities in the updated version of macOS Monterey 12.5.1. The remote attacker could exploit these vulnerabilities to take control of the affected system. The severity of the addressed vulnerabilities could allow the attackers to perform several attacks like elevating privileges, and executing arbitrary code on the affected
Apple macOS Security Updates – 18 August 2022 Read More »
FormBook is a data stealer and form grabber that was first advertised on HackForums in early 2016. The malware is associated with APT36, TEMP.Splinter and UNC2589 threat actors which target Financial Services FormBook is a self-extracting RAR file that starts an AutoIt loader. The AutoIt loader compiles and runs an AutoIt script. The script decrypts
Google has released an updated Chrome version (104.0.5112.101) for Windows, Mac and Linux to fix several vulnerabilities, including a zero-day flaw that is being exploited in the wild. The remote attacker could exploit these vulnerabilities to takecontrol of the affected system. The severity of the addressed vulnerabilities could allow the remote attacker to execute arbitrary code on
Google Chrome Security Updates – 17 August 2022 Read More »
Zoom has released security updates to fix vulnerabilities across multiple products on Windows and macOS. The remote attacker could exploit these vulnerabilities to gain access, escalate privileges, and bypass security controls. Sample of The Addressed Vulnerabilities: Zoom Client for Meetings and VDI Windows Meeting Clients code execution (CVE-2022-28755): CVSS: 9.6 Attack Vector: Network Attack Complexity:
Zoom Security Updates -14 August 2022 Read More »
Yanluowang is a targeted Ransomware for multiple critical infrastructure sectors, including the hardware, information technology, software, and high-tech sectors. Yanluowang was first discovered in mid-October 2021. Yanluowang group uses to publish the data stolen from ransomware victims. Yanluowang is ransomware that encrypts (and renames) files, ends all running processes, stops services, and creates the “README.txt”
Yanluowang Ransomware 11 August 2022 Read More »
SAP has released security updates to address several vulnerabilities affecting multiple products. SAP also announced (2) updates to the previously released patch day security note. This month’s patch fixes several vulnerabilities affecting multiple SAP products such as SAP BusinessObjects Business Intelligence (Open Document, Monitoring DB, Commentary DB), SAP Enable Now Manager, SAP NetWeaver, and SAP
SAP August 2022 Security Patch Day 11 August 2022 Read More »
| Cookie | Duration | Description |
|---|---|---|
| cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
| cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
| cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
| cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
| cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
| viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
