August 6, 2024 at 02:32PM Google released 46 fixes for Android in its August security patch batch, addressing a high-severity Linux kernel flaw (CVE-2024-36971) with potential for remote code execution. The bug may already be exploited by spyware, highlighting the urgency of updating Android devices. Other high-severity vulnerabilities include a Qualcomm component flaw and 11 … Read more
December 27, 2023 at 09:20AM The Operation Triangulation spyware campaign targeted iPhone devices by exploiting four zero-day vulnerabilities, allowing attackers to gain control over the devices without user interaction. Kaspersky analysts discovered this highly sophisticated attack chain and found that attackers leveraged undocumented hardware features in Apple chips to bypass security protections. The origin of … Read more
November 29, 2023 at 12:09PM Google released an emergency security update for Chrome, patching the sixth zero-day vulnerability of the year, CVE-2023-6345, amid active exploits. Available globally, the update fixes an integer overflow in Skia graphics library. Google restricts exploit details to curb further misuse, especially for unpatched third-party software. Meeting Takeaways: 1. Google released … Read more
October 16, 2023 at 06:30AM Messaging app Signal denies the existence of a zero-day flaw in its software, stating that it found no evidence to support the claim. The company has checked with the U.S. government and is urging users with legitimate information to report it. As a precaution, users have been advised to disable … Read more