November 19, 2024 at 03:00PM Oracle has addressed a critical unauthenticated file disclosure vulnerability (CVE-2024-21287) in its Agile PLM software, which was exploited as a zero-day. Users are urged to update immediately to prevent unauthorized file access. The flaw was reported by CrowdStrike and has a CVSS score of 7.5. **Meeting Takeaways:** 1. **Vulnerability Identified**: … Read more
November 11, 2024 at 07:19PM Apple’s iOS 18.1 update introduces a security feature that automatically reboots iPhones after extended idle times. This process re-encrypts data, enhancing protection against unauthorized access and making it more challenging to extract sensitive information. **Meeting Notes Takeaways:** 1. **New Security Feature**: Apple has introduced a new security feature with the … Read more
October 30, 2024 at 05:32AM Google has addressed a critical vulnerability in Chrome (CVE-2024-10487), while Mozilla has resolved high-severity issues in Firefox. The updates ensure enhanced security for users of both browsers, following the report of the Chrome vulnerability by Apple. **Meeting Takeaways:** 1. **Patch Released for Chrome Vulnerability:** – Google has addressed CVE-2024-10487, classified … Read more
October 28, 2024 at 12:06PM A security update for watchOS 11.1, available for Apple Watch Series 6 and later, addresses multiple vulnerabilities including authentication issues, memory corruption, and sensitive data exposure. Improvements include enhanced checks, memory management, and input validation to prevent unauthorized access and system crashes. Release date is October 28, 2024. ### Meeting … Read more
October 28, 2024 at 12:06PM Apple released an update for tvOS 18.1 addressing multiple security vulnerabilities, including path handling, symlink issues, memory corruption, and information disclosure. These vulnerabilities could allow unauthorized access to sensitive data, cause unexpected crashes, or manipulate protected system files. Updates are available for Apple TV HD and Apple TV 4K models. … Read more
October 28, 2024 at 12:06PM Apple has released security updates for macOS Sonoma 14.7.1, addressing numerous vulnerabilities including logic issues, sandbox circumvention, and information disclosure risks. Updates enhance validation, improve checks, and implement additional restrictions to safeguard against potential malware and unauthorized access to sensitive data. Users are encouraged to install the update promptly. ### … Read more
October 28, 2024 at 12:00PM An update for iOS 17.7.1 and iPadOS 17.7.1 addresses multiple vulnerabilities affecting various iPhone and iPad models. Issues include improved authentication, checks against unauthorized data access, and prevention of sensitive information disclosure and denial of service. Users are encouraged to update their devices. Release date: October 28, 2024. ### Meeting … Read more
October 23, 2024 at 06:56PM Fortinet disclosed a critical flaw (CVE-2024-47575) in its FortiManager software, allowing remote attackers to execute arbitrary code. With a CVSS score of 9.8, it’s actively exploited. Users are urged to update their software immediately. CISA added it to its Known Exploited Vulnerabilities Catalog, warning of significant user exposure. **Meeting Notes … Read more
October 21, 2024 at 08:24AM This week’s cybersecurity recap highlights increasing hacker tactics targeting seemingly secure systems while security experts develop advanced protective measures. Notable incidents include Apple’s macOS flaw and the weaponization of legitimate tools. Keeping devices updated is essential for protection. The FIDO Alliance aims to enhance passkey transfer across platforms. ### Meeting … Read more
October 15, 2024 at 02:21PM Apple’s iOS and iPadOS 16.7.8 update addresses multiple vulnerabilities, including arbitrary code execution and unauthorized data access. The update is available for iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, and both 9.7-inch and 12.9-inch iPad Pro (1st generation) models. ### Meeting Takeaways **Release Information:** – **Release Date:** … Read more