CISA has issued advisories on the following: Google Releases Security Updates for Chrome | CISA Drupal Releases Security Update | CISA Oracle Releases July 2022 Critical Patch Update | CISA Apple Releases Security Updates for Multiple Products | CISA – SANS had a good round-up of these updates here. Cisco …
Anonymous browsing – not anymore
Researchers from the New Jersey Institute of Technology have written a paper, which they will present at the Usenix Security Symposium in Boston, demonstrating how threat actors (or governments or law enforcement) could de-anonymise a users from their browsing habits. The attackers would analyse browsing activity and state to determine …
CISA adds one known vulnerability to it’s database for Microsoft Windows
The US Cybersecurity and Infrastructure Security Agency has added one new vulnerability to it’s Known Exploited Vulnerabilities Catalog for a Microsoft Windows privilege escalation vulnerability – this has been addressed in Microsoft’s July 2022 Patch Tuesday. CISA Adds One Known Exploited Vulnerability to Catalog | CISA
WebRTC zero-day fix available for Microsoft Edge
Better late than never… WebRTC zero-day fix lands in Microsoft Edge • The Register Actively exploited zero-day flaw in Google Chrome now patched – is yours? Could you check? – Smart Thinking Solutions
Google Chrome on Windows needs an update
Google Releases Security Update for Chrome | CISA
Actively exploited zero-day flaw in Google Chrome now patched – is yours? Could you check?
Make sure your Google Chrome patching is up to date. Google has just released a patch to fix a flaw in Chrome that was being actively exploited by threat actors. The attack is directed at the WebRTC system – which is a component used in web based comms, so avoid …
Google Chrome security updates available
The US Cybersecurity and Infrastructure Security Agency has issues an advisory about Google Chrome security updates: Google Releases Security Updates for Chrome | CISA