Recent Security News
-
AMD SEV OMG: Trusted execution undone by cache meddling
November 14, 2023 at 01:38PM Researchers have discovered a flaw in AMD’s SEV trusted execution environment called CacheWarp that allows attackers to manipulate cache lines and memory, potentially leading to arbitrary code execution, data exposure, or privilege escalation within a guest VM. AMD has been notified of the vulnerability and plans to issue patches to…
-
Windows 10 KB5032189 update released with 11 improvements
November 14, 2023 at 01:31PM Microsoft has released the KB5032189 cumulative update for Windows 10 21H2 and 22H2. It contains eleven fixes for various issues and includes the November 2023 Patch Tuesday security updates. Users can install the update by going to Settings, selecting Windows Update, and manually checking for updates. After installation, the Windows…
-
Intel out-of-band patch addresses privilege escalation flaw
November 14, 2023 at 01:09PM Intel has released an out-of-band security update to address a privilege escalation vulnerability in recent server and PC chips. The flaw, called INTEL-SA-00950, affects certain chip families and is being patched with a microcode update. Intel discovered the issue internally and there have been no reported active attacks. Google also…
-
Pharmacy provider Truepill data breach hits 2.3 million customers
November 14, 2023 at 12:40PM Truepill, a B2B pharmacy platform, has notified individuals of a data breach in which threat actors accessed sensitive personal information. The breach affects 2,364,359 people and includes data such as full names, medication types, demographic information, and names of prescribing physicians. Social Security numbers were not exposed. Multiple class action…