October 9, 2024 at 11:19AM Microsoft has resolved issues related to the Windows 11 Patch Tuesday preview (KB5043145), which previously caused multiple restarts and device connectivity failures. The latest update includes critical security fixes. However, Windows 11 22H2 users will no longer receive updates, with other editions approaching end-of-support dates as well. ### Meeting Takeaways: … Read more
October 8, 2024 at 01:26PM Microsoft released the KB5044273 cumulative update for Windows 10 22H2 and 21H2, containing nine changes and fixes, including an opt-in notification for Windows Update. It’s mandatory and includes security updates for October 2024 Patch Tuesday. Users can install it through Settings or manually from the Microsoft Update Catalog. The update … Read more
September 23, 2024 at 10:00AM ESET released patches for high-severity CVE-2024-7400 impacting Windows products, enabling privilege escalation through file deletion. The fix was automatically distributed to customers. The security flaw affected multiple end-user and enterprise products. ESET also addressed medium-severity CVE-2024-6654, which could cause denial-of-service attacks on macOS security tools, with patches for Cyber Security … Read more
September 7, 2024 at 12:02PM The FreeBSD Foundation secured a €686,400 investment from Germany’s Sovereign Tech Fund, focused on security feature enhancements and improvements extending into 2025. Supported by the German Federal Ministry, STF actively funds open source projects vital to global digital infrastructure, with recent investments concentrated on security upgrades and technical debt reduction. … Read more
September 4, 2024 at 11:22AM Google has issued the September 2024 Android security updates, addressing 34 vulnerabilities. Notably, CVE-2024-32896, a previously patched elevation of privilege flaw on Pixel devices, has been actively exploited. Based on the meeting notes, it appears that Google has released the September 2024 Android security updates to address 34 vulnerabilities. One … Read more
August 22, 2024 at 02:51PM New security fixes are being rolled out for Chrome to address a high-severity type confusion bug, identified as CVE-2024-7971, in the V8 JavaScript engine. Google reported the presence of an exploit for this vulnerability. The updated version 128 of Chrome will address 38 vulnerabilities, including CVE-2024-7971, and is expected to … Read more
July 30, 2024 at 04:54AM Apple announced security updates for iOS, iPadOS, and macOS. iOS 17.6 and iPadOS 17.6 fixed 35 security flaws, while macOS Sonoma 14.6 addressed nearly 70 vulnerabilities. Fixes included patches for third-party components. Safari, tvOS, visionOS, and watchOS also received updates. Users are urged to update their devices promptly. More details … Read more
July 18, 2024 at 11:57AM SolarWinds addressed critical vulnerabilities in its Access Rights Manager software, including RCE and directory traversal flaws. These flaws could allow unprivileged attackers to execute code, delete files, and obtain sensitive information. The company released version 2024.3 with security fixes. SolarWinds has yet to confirm if exploits for the flaws are … Read more
July 1, 2024 at 07:38AM A critical vulnerability (CVE-2024-2973) in Juniper Networks routers scored a perfect 10 on CVSS systems. Juniper advised applying emergency patches due to an authentication bypass bug that could allow network-based attackers to take control. The bug affects Smart Session Router, Session Smart Conductor, and WAN Assurance Routers, potentially causing significant … Read more
June 24, 2024 at 01:30AM Cyber espionage groups are using an Android remote administration tool, Rafel RAT, disguised as popular apps like Instagram and WhatsApp. This tool can perform various malicious activities like data theft and device manipulation. It has been used in cyber attacks targeting high-profile entities across multiple countries. It highlights the need … Read more