It has been one of those weeks, so let’s catch up with the cyber security advisories from one of my trusted sources, The US government Cybersecurity and Infrastructure Security Agency (CISA). There are alerts for Apple, Cisco and Mozilla products. Cisco Releases Security Advisories for Multiple Products | CISA Apple …
Apple and Google are plugging the same zero-day flaw
Research has now revealed that the cause of the recent Apple and Google zero-day patches was the same software library used by both software giants. Libwebp, a library found in millions of apps, was the source of the vulnerability. Incomplete disclosures by Apple and Google create “huge blindspot” for 0-day …
Continue reading “Apple and Google are plugging the same zero-day flaw”
Writing software is hard
Writing code for today’s sophisticated software is hard and no matter how careful the vendors are, how many beta and alpha testers they have, errors will always slip through. If those errors compromise the user’s security, you can bet a threat actor will discover them and exploit them. It is …
Apple Zero-day patches
This did not make the news on Friday as I was travelling – here it is today as a reminder. Apple Releases Security Updates for Multiple Products | CISA This impacts a range of Apple products including, iPhones, iPads, Apple Watches, Macs and the Safari browser. Even if you have …
Good news for Chromebooks
I am always writing and talking about how important patches and updates are to your cyber security, so this is good news for users of Chromebooks, extended update support: Google extends security update support for Chromebooks to 10 years (bleepingcomputer.com) We have some clients who use Chromebooks as they represent …
