Aggregator

Apple security updates: iOS 14.7 fixes WiFiDemon flaw

5 days ago

Apple has released security updates for macOS Big Sur (11.5), Catalina (10.15) and Mojave (10.14), as well as iOS (14.7) and iPadOS (14.7). There is no indication that Apple has fixed any vulnerabilities that may be exploited to deliver NSO Group’s Pegasus spyware via “zero-click” iMessage attacks. macOS security updates macOS Big Sur (11.5) comes with fixes for a multitude of security issues. Most of these may lead to arbitrary code execution, allow malicious applications … More →

The post Apple security updates: iOS 14.7 fixes WiFiDemon flaw appeared first on Help Net Security.

Zeljka Zorz

 Cisco Releases Security Updates

5 days ago
Original release date: July 22, 2021

Cisco has released security updates to address multiple vulnerabilities in Intersight Virtual Appliance. An attacker could exploit these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.

CISA encourages users and administrators to review Cisco Advisory cisco-sa-ucsi2-iptaclbp-L8Dzs8m8 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA

Drupal Releases Security Updates

5 days ago
Original release date: July 22, 2021

Drupal has released security updates to address a critical third-party-library vulnerability that could affect Drupal 7,  8.9, 9.1, and 9.2. An attacker could exploit this vulnerability to take control of an affected system.

CISA encourages users and administrators to review the Drupal security advisory and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA

APT Hackers Distributed Android Trojan via Syrian e-Government Portal

5 days 2 hours ago
An advanced persistent threat (APT) actor has been tracked in a new campaign deploying Android malware via the Syrian e-Government Web Portal, indicating an upgraded arsenal designed to compromise victims. "To the best of our knowledge, this is the first time that the group has been publicly observed using malicious Android applications as part of its attacks," Trend Micro researchers Zhengyu
Ravie Lakshmanan

NCSC-2021-0649 [1.00] [M/H] Kwetsbaarheden verholpen in Apple Mac OS

5 days 3 hours ago
Apple heeft kwetsbaarheden verholpen in Apple MacOS Big Sur, Catalina en Mojave. Een kwaadwillende kan de kwetsbaarheden misbruiken voor het veroorzaken van de volgende types schade: Denial-of-Service (DoS) Omzeilen van beveiligingsmaatregel (Remote) code execution (Administrator/Root rechten) (Remote) code execution (Gebruikersrechten) Toegang tot gevoelige gegevens Verhoogde gebruikersrechten

Reduce End-User Password Change Frustrations

5 days 4 hours ago
Organizations today must give attention to their cybersecurity posture, including policies, procedures, and technical solutions for cybersecurity challenges.  This often results in a greater burden on the IT service desk staff as end-users encounter issues related to security software, policies, and password restrictions.  One of the most common areas where security may cause challenges for
The Hacker News

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer