An actively exploited Chrome zero-day that Google patched on July 4 has been linked to an Israeli spyware company and used in targeted attacks aimed at entities in the Middle East.
Hundreds of ICS Vulnerabilities Disclosed in First Half of 2022
More than 600 industrial control system (ICS) product vulnerabilities were disclosed in the first half of 2022 by the US Cybersecurity and Infrastructure Security Agency (CISA), according to an analysis conducted by industrial asset and network monitoring company SynSaber.
Cisco Patches Severe Vulnerabilities in Nexus Dashboard
Cisco on Wednesday announced the availability of patches for multiple vulnerabilities in Nexus Dashboard, including a critical-severity issue that could lead to the execution of arbitrary commands.
Machine Identity Management Firm AppViewX Raises $20 Million
Machine identity management and application delivery automation provider AppViewX has raised $20 million in a Series B funding round led by Brighton Park Capital, which brings the total invested in the company to $52 million.
Apple Ships Urgent Security Patches for macOS, iOS
It’s a very busy Patch Wednesday for computer users running Apple’s flagship macOS and iOS devices.
Apple’s security response team has pushed out software fixes for at least 39 software vulnerabilities haunting the macOS Catalina, iOS and iPadOS platforms.
Netwrix Auditor Vulnerability Can Facilitate Attacks on Enterprises
Data security company Netwrix recently patched a vulnerability in its Auditor product that could allow attackers to execute arbitrary code and possibly compromise an organization’s Active Directory domain.
Google Introduces DNS-over-HTTP/3 in Android
Google this week announced the rollout of DNS-over-HTTP/3 (DoH3) for Android 11 and newer devices.
An encrypted DNS protocol, DoH3 is expected to provide performance and safety improvements compared to alternatives, mainly through the QUIC transport layer network protocol.
Google, EU Warn of Malicious Russian Cyber Activity
Russia-linked Turla threat actor spotted using Android malware for first time
Google and the European Union have issued separate warnings this week over Russian cyberattacks and misinformation campaigns.
Can Encryption Key Intercepts Solve The Ransomware Epidemic?
California-based Nubeva is building technology to recover encrypted data without making ransomware payments
Chrome 103 Update Patches High-Severity Vulnerabilities
Google this week announced a Chrome update that resolves a total of 11 vulnerabilities in the browser, including six reported by external researchers.
Of these, five are use-after-free issues, including four that are considered “high severity.” Use-after-free flaws are triggered when a program does not clear the pointer after freeing memory allocation.
