Frank Crast, Author at Securezoo

Adobe has released security updates for Adobe Acrobat and Reader, Photoshop, Commerce and After Effects

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 12, 2022 / Acrobat, Adobe, After Effects, Commerce, Photoshop

Adobe has released security updates for Adobe Acrobat and Reader, Photoshop, Commerce and After Effects.

Adobe has released security updates for Adobe Acrobat and Reader, Photoshop, Commerce and After Effects Read More »

Microsoft April 2022 Security Updates addresses 117 vulnerabilities (to include 2 zero-days)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / April 12, 2022 / CVE-2022-22008, CVE-2022-23257, CVE-2022-23259, CVE-2022-24491, CVE-2022-24497, CVE-2022-24500, CVE-2022-24521, CVE-2022-24537, CVE-2022-24541, CVE-2022-26809, CVE-2022-26904, CVE-2022-26919, Zero-day

The Microsoft April 2022 Security Updates includes patches and advisories for 117 vulnerabilities, ten of those rated Critical and two zero-day flaws.

Microsoft April 2022 Security Updates addresses 117 vulnerabilities (to include 2 zero-days) Read More »

Google releases Chrome 100 security update (100.0.4896.88) with fixes for 11 vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 12, 2022 / Chrome, Chrome 100, CVE-2022-1305, CVE-2022-1306, CVE-2022-1307, CVE-2022-1308, CVE-2022-1309, CVE-2022-1310, CVE-2022-1311, CVE-2022-1312

Google has released Chrome 100.0.4896.88 for Windows, Mac and Linux with fixes for 11 vulnerabilities, 8 rated High severity.

Google releases Chrome 100 security update (100.0.4896.88) with fixes for 11 vulnerabilities Read More »

cyber security, information security, data privacy-3400657.jpg

CISA adds Critical WatchGuard and Microsoft AD flaws to Catalog of exploited vulnerabilities

Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / April 11, 2022 / Active Directory, CVE-2017-11317, CVE-2020-2509, CVE-2021-22600, CVE-2021-27852, CVE-2021-39793, CVE-2021-42278, CVE-2021-42287, CVE-2022-23176, Firebox, Microsoft, QNAP, WatchGuard, XTM

The Cybersecurity and Infrastructure Security Agency (CISA) has added a Critical WatchGuard and two Microsoft Active Directory flaws, along with five other vulnerabilities to its Known Exploited Vulnerabilities Catalog.

CISA adds Critical WatchGuard and Microsoft AD flaws to Catalog of exploited vulnerabilities Read More »

Denonia malware targets AWS Lambda

Cloud Security, Cybersecurity Attacks, Malware / Frank Crast / April 8, 2022 / AWS, Cado Labs, Cryptocurrency, Cryptomining, Denonia, Lambda, XMRig

A first of its kind malware dubbed Denonia has been targeting Amazon Web Services (AWS) Lambda, an event-driven, serverless computing platform.

Denonia malware targets AWS Lambda Read More »

Threat actors exploit Spring4Shell to weaponize and execute Mirai botnet

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / April 8, 2022 / botnet, CVE-2022-22963, CVE-2022-22965, Mirai, Spring, Spring Framework, Spring4Shell

Researchers from Trend Micro have spotted threat actors exploiting the Spring4Shell vulnerability CVE-2022-22965 to weaponize and execute Mirai botnet.

Threat actors exploit Spring4Shell to weaponize and execute Mirai botnet Read More »

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Sudo, SMBv1 vulnerabilities)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 7, 2022 / CVE-2017-0148, CVE-2021-31166, CVE-2021-3156, SMBv1, sudo

The Cybersecurity and Infrastructure Security Agency (CISA) has added 3 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Sudo, SMBv1 and Microsoft HTTP Protocol Stack vulnerabilities.

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Sudo, SMBv1 vulnerabilities) Read More »

Mozilla releases Firefox 99 with fixes for 3 High severity vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 7, 2022 / CVE-2022-1097, CVE-2022-28281, CVE-2022-28289, Firefox, Firefox99, Mozilla

The Mozilla Foundation has patched three High risk vulnerabilities in Firefox 99, as well as a number of other bug fixes.

Mozilla releases Firefox 99 with fixes for 3 High severity vulnerabilities Read More »

Google releases Chrome 100 security update (100.0.4896.75) with fix for 1 High risk vulnerability

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 7, 2022 / Android, Chrome, Chrome100, CVE-2022-1232, LTS-96

Google has released Chrome 100.0.4896.75 for Windows, Mac and Linux with fixes for just one High risk vulnerability. In addition, Google also issued security updates for Chrome for iOS, Chrome for Android and LTS-96.

Google releases Chrome 100 security update (100.0.4896.75) with fix for 1 High risk vulnerability Read More »

GitLab issues security update for Critical hard-coded password vulnerability (CVE-2022-1162)

Application Security, Password Management, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 2, 2022 / CVE-2022-1162, GitLab, LDAP, Oauth, OmniAuth, passwords

GitLab has issued a security update to address a Critical vulnerability CVE-2022-1162 where static passwords were inadvertently set during OmniAuth-based registration.

GitLab issues security update for Critical hard-coded password vulnerability (CVE-2022-1162) Read More »