Google Chrome is a very popular web browser – so it is a prime target for threat actors looking for vulnerabilities they can exploit. Google patches another actively exploited Chrome zero-day (bleepingcomputer.com) Make sure you and your team have patched Google Chrome. Not sure how to check if your team …
Patch Tuesday – It comes around so quickly!
Why is Patch Tuesday important? For that answer why Patch Tuesday is important, have a look here: How Microsoft Patch Tuesday can help your cyber security planning Patch Tuesday for April 2023 One of the patches in this release is for the zero-day vulnerability CVE-2023-28252, which is a privilege elevation …
Continue reading “Patch Tuesday – It comes around so quickly!”
Why you need to keep things patched
We have written several articles recently about how critical patches and updates are to your cyber security. Here is another reason why: Proof-of-Concept released for critical Microsoft Word RCE bug (bleepingcomputer.com) Once the threat actors are aware of a vulnerability – whether it is patched or not – they will …
CISA adds a software development tool vulnerability to the Known Exploited Vulnerabilities Catalog and security advisories
The US government Cybersecurity and Infrastructure Security Agency (CISA) has added a vulnerability for Telerik, a software development tool, to it’s Known Exploited Vulnerabilities Catalog: CISA Has Added One Known Exploited Vulnerability to Catalog | CISA This week CISA also released a security advisory for a range of Apple products, …
Google Chrome’s 9th zero-day vulnerability of 2022 now patched
Software is difficult and no matter how much vendors test, both black and white hackers will find vulnerabilities once the software has been released. The issue is how fast does the vendor respond with patches once a vulnerability has been found. Google Chrome emergency update fixes 9th zero-day of the …
Continue reading “Google Chrome’s 9th zero-day vulnerability of 2022 now patched”
