We have written several articles recently about how critical patches and updates are to your cyber security. Here is another reason why: Proof-of-Concept released for critical Microsoft Word RCE bug (bleepingcomputer.com) Once the threat actors are aware of a vulnerability – whether it is patched or not – they will …
CISA adds a software development tool vulnerability to the Known Exploited Vulnerabilities Catalog and security advisories
The US government Cybersecurity and Infrastructure Security Agency (CISA) has added a vulnerability for Telerik, a software development tool, to it’s Known Exploited Vulnerabilities Catalog: CISA Has Added One Known Exploited Vulnerability to Catalog | CISA This week CISA also released a security advisory for a range of Apple products, …
Google Chrome’s 9th zero-day vulnerability of 2022 now patched
Software is difficult and no matter how much vendors test, both black and white hackers will find vulnerabilities once the software has been released. The issue is how fast does the vendor respond with patches once a vulnerability has been found. Google Chrome emergency update fixes 9th zero-day of the …
Continue reading “Google Chrome’s 9th zero-day vulnerability of 2022 now patched”
Google Chrome clipboard issues – do you know if one of your team is using an unpatched version?
This is an accidental flaw introduced into the latest version of Chrome, which Google is fixing. Google Chrome bug lets sites write to clipboard without asking (bleepingcomputer.com) The issue with websites being able to write to the system clipboard, is that clipboard often holds sensitive information during a website interaction …
Well it was sure to happen… Blake Lemoine the man who claimed Google’s AI is sentient is fired – he was the classic “insider threat”.
Not because he thinks the AI is sentient – although that may have ticked a few people off – but because he published confidential Google information. Blake Lemoine: Google fires engineer who said AI tech has feelings – BBC News Blake still chose to persistently violate clear employment and data …