November 5, 2022
For a PDF version of this week’s report, click here.
For a PDF version of this week’s report, click here.
ConnectWise patched a critical RCE vulnerability in Recover and R1Soft Server Backup Manager Google fixes seventh Chrome zero-day exploited in attacks this year Atlassian Jira Align, Version 10.107.4 Vulnerability Advisory Apple fixes new zero-day used in attacks against iPhones, iPads,…
Fortinet warns admins to patch critical auth bypass bug immediately Updated information: Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server Steam Gaming Phish Showcases Browser-in-Browser Threat ‘IT security issue’ impacts multiple hospitals across several states Microsoft investigates Windows…
Microsoft September 2022 Patch Tuesday fixes zero-day used in attacks, 63 flaws Windows 10 Update KB5017308 causes issues when creating/copying files via GPO Microsoft issues critical security updates as PCs attacked through zero-day flaw Microsoft issues patch for serious security…
QNAP patches zero-day used in new Deadbolt ransomware attacks Interpol and local Police dismantled an Asian Sextortion ring Zyxel has released patches for NAS products affected by a format string vulnerability HP fixes severe Privilege Escalation bug in pre-installed HP…
August 2022 Patch Tuesday | Microsoft Releases 121 Vulnerabilities with 17 Critical Microsoft August Patch Tuesday fixes critical Secure Boot GRUB vulnerability Microsoft blocks UEFI bootloaders enabling Windows Secure Boot bypass Microsoft warns about Windows update fails, UEFI update might…
VMware urges admins to patch critical auth bypass bug immediately Cisco fixes critical remote code execution bug in VPN routers Millions of Arris routers are vulnerable to path traversal attacks Critical RCE Bug Could Let Hackers Remotely Take Over DrayTek…