The Mozilla Foundation has patched two Critical zero-day vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus 97.3.0. There are also reported attacks in the wild against each of these flaws.
Mozilla patches 2 Critical Firefox zero-day security flaws under attack in the wild Read More »
A new Linux privileged escalation vulnerability in Cgroups feature could cause container escape on unhardened hosts. This is the third in a line of similar Kernel vulnerabilities that could allow containers to escape.
Linux Cgroup vulnerability can cause container escape Read More »
The Cybersecurity and Infrastructure Security Agency (CISA) has added 95 vulnerabilities to its Known Exploited Vulnerabilities Catalog. Recent additions include Apache Tomcat “Ghostcat”, Exim and Cisco Small Business RV routers, among others.
CISA adds 95 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »
Following on the footsteps of other destructive disk-wiping malware attacks, ESET researchers have also discovered a second wiper malware dubbed IsaacWiper targeting governmental networks in Ukraine.
IsaacWiper: another disk wiping malware targets Ukraine systems Read More »
Google has released Chrome 99.0.4844.51 for Windows, Mac and Linux with fixes for 28 vulnerabilities.
Google releases Chrome 99 security update with fixes for 28 vulnerabilities Read More »
Symantec security researchers have discovered a new stealth malware dubbed “Daxin” they say is the most “advanced piece of malware” linked to Chinese threat actors and is designed to target hardened networks.
Daxin: “most advanced piece of malware” designed to target hardened networks Read More »
Threat actors have deployed destructive disk-wiping malware against organizations in Ukraine in order to destroy and make computer systems unusable.
Threat actors deploy destructive disk-wiping malware against organizations in Ukraine Read More »
An advanced persistent threat (APT) campaign dubbed TiltedTemple has been using a “sophisticated tool” and malicious backdoor SockDetour to target U.S. defense contractors.
SockDetour backdoor targets U.S. defense contractors Read More »
Cisco has released a High risk security advisory for an Email Security Appliance DNS Verification Denial of Service (DoS) vulnerability, as well as several other vulnerabilities in Nexus switches and NX-OS software.
Cisco patches High risk Email Security Appliance DNS Verification DoS vulnerability Read More »
The Mozilla Foundation has patched a High risk local privilege escalation vulnerability in Mozilla VPN.
Mozilla patches local privilege escalation vulnerability in Mozilla VPN Read More »
