Tag: update
-
Microsoft says premature patch could make Windows Recall forget how to work
by
in SecurityNewsInstalled the final non-security preview update of 2024? Best not hop onto the Dev Channel First seen on theregister.com Jump to article: www.theregister.com/2024/12/04/microsoft_update_recall_bug/
-
Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability
by
in SecurityNewsThe vulnerability was first identified in 2014. First seen on hackread.com Jump to article: hackread.com/cisco-patch-decade-old-webvpn-vulnerability/
-
Android’s December 2024 Security Update Patches 14 Vulnerabilities
by
in SecurityNewsGoogle has released patches for 14 high-severity vulnerabilities as part of Android’s December 2024 security update. The post Android’s December 2024 Security Update Patches 14 Vulnerabilities appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/androids-december-2024-security-update-patches-14-vulnerabilities/
-
Jetzt patchen! Exploit für kritische Lücke in Whatsup Gold in Umlauf
by
in SecurityNewsDie Monitoring-Software Whatsup Gold ist verwundbar. Sicherheitsforscher sind nun auf einen Exploit für Schadcode-Attacken gestoßen. Ein Patch ist verfügbar. First seen on heise.de Jump to article: www.heise.de/news/Jetzt-patchen-Exploit-fuer-kritische-Luecke-in-Whatsup-Gold-in-Umlauf-10187538.html
-
Google Chrome Security Update, Patch for High-severity Vulnerability
by
in SecurityNewsGoogle has released a significant security update for its Chrome browser, aiming to address several vulnerabilities and enhance user safety. The Stable channel has been updated to version 131.0.6778.108/.109 for Windows, and Mac, and version 131.0.6778.108 for Linux. These updates will be gradually rolled out to users over the coming days and weeks. According to…
-
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console
by
in SecurityNewsVeeam has released security updates to address a critical flaw impacting Service Provider Console (VSPC) that could pave the way for remote code execution on susceptible instances.The vulnerability, tracked as CVE-2024-42448, carries a CVSS score of 9.9 out of a maximum of 10.0. The company noted that the bug was identified during internal testing.”From the…
-
First-ever Linux UEFI bootkit turns out to be student project
by
in SecurityNews
Tags: antivirus, attack, authentication, awareness, computer, conference, cybersecurity, firmware, linux, malicious, malware, microsoft, risk, software, technology, threat, training, update, windowsBootkitty, a recently discovered boot-level UEFI rootkit for Linux, was evidently created by students participating in a cybersecurity training program at the South Korean Information Technology Research Institute (KITRI).The bootkit, found and analyzed by researchers from antivirus vendor ESET last week, showed signs of being a proof of concept rather than production-ready malware. Nevertheless, the…
-
US updates telco security guidance after mass Chinese hack
Following the widespread Salt Typhoon hacks of US telecoms operators including AT&T and Verizon, CISA and partner agencies have launched refreshed security guidance for network engineers and defenders alike First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366616446/US-updates-telco-security-guidance-after-mass-Chinese-hack
-
Windows 11 23H2 Hardening: AD Domain Computer ReJoin schlägt fehl
by
in SecurityNewsHeute noch ein kurzer Informationssplitter, auf den mich ein Blog-Leser bereits im November 2024 hingewiesen hat. Wird ein Active Directory Domain-Hardening gemäß Update KB5020276 durchgeführt, kann es Probleme unter Windows 11 23H2 geben, so dass Active Directory Domain Computer ReJoin … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/12/04/windows-11-23h2-hardening-ad-domain-computer-rejoin-schlaegt-fehl/
-
First-ever Linux UEFI bootkit turns out to be research project
by
in SecurityNews
Tags: antivirus, attack, authentication, awareness, computer, conference, cybersecurity, firmware, linux, malicious, malware, microsoft, risk, software, technology, threat, training, update, windowsBootkitty, a recently discovered boot-level UEFI rootkit for Linux, was evidently created by students participating in a cybersecurity training program at the South Korean Information Technology Research Institute (KITRI).The bootkit, found and analyzed by researchers from antivirus vendor ESET last week, showed signs of being a proof of concept rather than production-ready malware. Nevertheless, the…
-
Decade-Old Cisco Vulnerability Under Active Exploit
by
in SecurityNewsCisco encourages users to update to an unaffected version of its Adaptive Security Appliance (ASA) software since there are no workarounds for the 2014 vulnerability. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/decade-old-cisco-vulnerability-exploit
-
MSSP Market Update: Magna5 Acquires ThreatAdvice
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/mssp-market-update-magna5-acquires-threatadvice
-
Exploit released for critical WhatsUp Gold RCE flaw, patch now
by
in SecurityNewsA proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/exploit-released-for-critical-whatsup-gold-rce-flaw-patch-now/
-
Veeam warns of critical RCE bug in Service Provider Console
by
in SecurityNewsVeeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/veeam-warns-of-critical-rce-bug-in-service-provider-console/
-
Sicherheitslücke bei DRoutern: Hersteller empfiehlt Entsorgung statt Update
by
in SecurityNewsFirst seen on t3n.de Jump to article: t3n.de/news/sicherheit-d-link-router-entsorgung-statt-update-1660272/
-
Inside Akira Ransomware’s Rust Experiment
by
in SecurityNewsxecutive Summary Introduction Earlier this year, Talos published an update on the ongoing evolution of Akira ransomware-as-a-service (RaaS) that has become one of the more prominent players in the current ransomware landscape. According to this update, for a while in early 2024, Akira affiliates experimented with promoting a new cross-platform variant of the ransomware called…
-
Neue Update-Technologie kommt für alle Server-Editionen – So funktioniert Hotpatching in Windows Server 2025
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/neue-update-technologie-windows-server-2025-hotpatching-a-b73adbd463369bcbd9c0110fb33481bd/
-
CIO POV: Building trust in cyberspace
by
in SecurityNews
Tags: access, ai, attack, best-practice, business, cio, cisa, cloud, cyber, data, deep-fake, encryption, framework, GDPR, group, identity, infrastructure, intelligence, Internet, mfa, mitre, nist, privacy, regulation, resilience, risk, service, software, strategy, technology, threat, tool, update, windowsTrust lies at the heart of every relationship, transaction, and encounter. Yet in cyberspace”, where we work, live, learn, and play”, trust can become elusive.Since the dawn of the internet nearly 50 years ago, we’ve witnessed incredible digital transformations paired with increasingly formidable threats. Knowing who and what to trust has become so difficult that…
-
Small number of vulnerabilities patched in last Android security update of 2024
by
in SecurityNewsNone of the patched bugs were considered critical. First seen on cyberscoop.com Jump to article: cyberscoop.com/android-security-update-december-2024/
-
MSSP Market Update: MSSPs Warm Up to Crowdstrike
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/mssp-market-update-mssps-warm-up-to-crowdstrike
-
Trotz Support-Ende im Oktober 2025 – Windows 10 gewinnt im November 2024 wieder Marktanteile
by
in SecurityNewsObwohl Windows 10 nur noch ein Jahr Updates erhält, kann es im November bei den Marktanteilen gegenüber Windows 11 sogar zulegen. First seen on computerbase.de Jump to article: www.computerbase.de/news/betriebssysteme/trotz-support-ende-im-oktober-2025-windows-10-gewinnt-im-november-2024-wieder-marktanteile.90515
-
AWS launches tools to tackle evolving cloud security threats
by
in SecurityNewsThe increasing sophistication and scale of cyber threats pose a growing challenge for enterprises managing complex cloud environments. Security teams often face overwhelming volumes of alerts, fragmented workflows, and limited tools to identify and respond to attack patterns spanning multiple events.Amazon Web Services (AWS) is addressing these challenges with two significant updates to its cloud…
-
Retail outages drag into second week after Blue Yonder ransomware attack
by
in SecurityNewsA ransomware attack on supply chain software giant Blue Yonder continues to cause disruption to the company’s customers, almost two weeks after the outage first began. In a brief update to its cybersecurity incident page on Sunday, Arizona-based Blue Yonder said it is making “good progress” in its recovery from the attack, which hit its…
-
Kein Patch von Microsoft: Zero-Day-Lücke gefährdet Windows Server 2012
by
in SecurityNewsIn dem betagten Betriebssystem Windows Server 2012 klafft eine Sicherheitslücke. Ein Patch ist verfügbar, jedoch bisher nur von einem Drittanbieter. First seen on golem.de Jump to article: www.golem.de/news/kein-patch-von-microsoft-zero-day-luecke-gefaehrdet-windows-server-2012-2412-191330.html
-
Fahmi Fadzil Proposes Major Updates to Malaysia’s Cyber Laws
by
in SecurityNewsMalaysian minister Fahmi Fadzil has tabled two crucial pieces of legislation aimed at addressing the rising threats of online harassment and cybercrimes. These proposed changes, part of the Communications and Multimedia (Amendments) Bill 2024 and the Malaysian Communications and Multimedia Commission (MCMC) (Amendment) Bill 2024, were introduced in the Dewan Rakyat for their first reading.…