Recent Security News
-
Opening Critical Infrastructure: The Current State of Open RAN Security
December 1, 2023 at 03:15AM Open Radio Access Network (O-RAN) offers standardized, flexible interfaces for previously proprietary RAN systems. While it facilitates innovation through multivendor xApps, these present vulnerabilities, exposing the entire RAN Intelligent Controller to potential security threats. Researchers identified crucial flaws in near-RT RIC’s messaging, including DoS vulnerabilities and spoofing risks, necessitating robust…
-
Zyxel Releases Patches to Fix 15 Flaws in NAS, Firewall, and AP Devices
December 1, 2023 at 01:54AM Zyxel released patches for 15 security issues affecting NAS, firewall, and AP devices. This includes three critical vulnerabilities that could allow unauthenticated command execution. High-severity flaws enabling system information access and arbitrary command execution were also patched. Users are urged to update their devices to prevent exploitation. Meeting Takeaways: 1.…
-
Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws
November 30, 2023 at 11:36PM Apple rolled out updates for iOS, iPadOS, macOS, and Safari to fix two actively exploited WebKit vulnerabilities. These flaws could potentially leak sensitive data and enable arbitrary code execution. The affected versions precede iOS 16.7.1, and all WebKit-based browsers on Apple devices are impacted. Devices from iPhone XS and certain…