Google Releases PoC Exploit for Browser-Based Spectre Attack
Google last week announced the release of proof-of-concept (PoC) code designed to exploit the notorious Spectre vulnerability and leak information from web browsers.
Initially detailed in...
Here’s How Security Flaws in GE Relays Could Be Exploited in Real World Attacks
Organizations using Universal Relay (UR) products made by GE’s Grid Solutions have been informed this week that many of the devices in this product...
Microsoft Defender Antivirus Now Protects Users Against Ongoing Exchange Attacks
Microsoft informed customers on Thursday that Defender Antivirus and System Center Endpoint Protection now provide automatic protection against attacks exploiting the recently disclosed Exchange...
New spear phishing emails target C-suite executives, assistants & financial departments
Area 1 Security recently stopped a sophisticated Microsoft Office 365 credential harvesting campaign targeting C-suite executives, high-level assistants, and financial departments across numerous industries, including financial...
Sudo Security Issue (CVE-2021-3156)
Last Updated: 2021/01/27 1:00PM PDT
CVE Identifier: CVE-2021-3156
This is an update for this issue.
AWS is aware of the security issue recently disclosed by the...
Apple Secuirty Updates
iOS 14.4.1 and iPadOS 14.4.1
Released March 8, 2021
WebKit
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and...
Apple Releases Security Updates
Apple has released security updates to address vulnerabilities in macOS Big Sur 11.0.1, macOS Catalina 10.15.7, and macOS Mojave 10.14.6. An attacker could exploit...
Oracle Security Update
Oracle has released security update to address vulnerabilities affecting its multiple products. Exploitation of these vulnerabilities could allow an attacker to take control of an affected system.
Google Releases Security Updates for Chrome
Google has released Chrome version 88.0.4324.96 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.
Cisco Releases Advisories for Multiple Products
Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.
