Cybersecurity Starts in the Boardroom
This the zero-day WebKit vulnerability that Apple patched in mid-August for current operating systems and Safari. The flaw is so serious and there are reports of it being exploited in the wild that Apple has issued a security advisory covering older devices and iOS versions: About the security content of …
Continue reading “Apple security flaw is so serious they extended the fix to older devices”
This is an accidental flaw introduced into the latest version of Chrome, which Google is fixing. Google Chrome bug lets sites write to clipboard without asking (bleepingcomputer.com) The issue with websites being able to write to the system clipboard, is that clipboard often holds sensitive information during a website interaction …
Keeping your software up to date is important for all of us – doubly so if you are the people producing the code: GitLab ‘strongly recommends’ patching critical RCE vulnerability (bleepingcomputer.com)
The US Government’s CISA has released a range of security advisories, including updates required for VMware: VMware Releases Security Update | CISA CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite | CISA CISA has also been issuing advice for industrial systems. If you use these …
Continue reading “US Cybersecurity and Infrastructure Security Agency security advisories”
We have been covering these issues, here is the BBC’s article about the vulnerabilities: Hackers may have exploited security flaws – Apple – BBC News Apple releases emergency patch for two iPhone, Mac zero-day vulnerabilities being exploited – The Record by Recorded Future
