Cisco released security updates to address vulnerabilities in multiple products on Wednesday. Two of the bugs were rated critical and 11 rated high severity. Another 18 Medium severity updates were also released this week.
Cisco fixes critical vulnerabilities in multiple products Read More »
Cisco’s Talos security group has discovered new details on the VPNFilter modular malware threat since they first revealed the campaign late last month. Talos says that VPNFilter is now targeting more makes/models of devices than the company initially thought. VPNFilter also has added capabilities to include ability to deliver exploits to endpoints. “These new vendors are ASUS,
VPNFilter: New targets and developments Read More »
Account data associated with 92 million users of genealogy and DNA testing service MyHeritage were leaked and found on a third party private server.
DNA testing service leaks data on 92M customers Read More »
Thousands of organizations are leaking sensitive email according to researchers from Kenna Security. The root cause is a widespread misconfiguration of Google Groups, a web forum used as part of Google’s G Suite of workspace tools.
Google Groups leaks data Read More »
Apple has released security updates to address vulnerabilities in multiple products to include OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.4. An attacker could exploit unpatched vulnerabilities to take over a victim’s system. In all, 32 vulnerabilities were included in the OS X and macOS updates. Three of the kernel bugs could allow
Apple security updates for macOS, iOS, Safari and others Read More »
Does your organization have any Redis servers exposed to the internet? If so, you should disconnect them from the public and ensure Redis services are exposed to only “trusted” environments such as your internal company network.
Internet exposed Redis servers Read More »
repository hosting services GitHub, GitLab and Microsoft VSTS were all impacted by a serious vulnerability that could lead to arbitrary code execution when a developer uses a malicious repository, Threatpost reports. Each of the hosting services patched the bug on Tuesday.
Git tool patches serious vulnerabilities Read More »
A new US-CERT Technical Alert (TA) warned cyber actors are using Joanap and Brambul malware to target multiple victims worldwide.
Joanap Backdoor Trojan and Brambul SMB Worm Read More »
Google has patched a reCAPTCHA security vulnerability that allows an attacker to bypass a system.
reCAPTCHA bypass vulnerability patched Read More »
Google has released Chrome 67 (version 67.0.3396.62) for Windows, Mac and Linux OS. The update includes 34 security fixes that address numerous vulnerabilities that could allow a remote attacker to take control of a victim’s computer.
Security updates for Chrome 67 Read More »
