Monday, December 23, 2024

Security Updates

Microsoft Urges Windows Admins to Patch Microsoft Message Queuing RCE Flaw

Microsoft has disclosed two Critical remote code execution vulnerabilities in MSMQ (Microsoft Message Queuing) and the Windows Wi-Fi Driver.The CVE for these vulnerabilities has been assigned with CVE-2024-30080 and...

Microsoft Unveild New Windows 11 Features To Strengthen Security

Microsoft has been prioritizing security in Windows, as they introduced Secured-Core PCs to protect from hardware to cloud attacks and expanded passwordless offerings with...

NETGEAR buffer Overflow Vulnerability Let Attackers Bypass Authentication

Some router models have identified a security vulnerability that allows attackers to bypass authentication.To exploit this vulnerability, an attacker must know the WiFi password...

Oracle Releases Biggest Security Update in 2024 – 372 Vulnerabilities Are Fixed – Update Now!

Oracle has released its April 2024 Critical Patch Update (CPU), addressing 372 security vulnerabilities across multiple Oracle products. This comprehensive update fixes critical flaws...

YubiKey Manager Privilege Escalation Let Attacker Perform Admin Functions

YubiKey Manager GUI on Windows before version 1.2.6 has a vulnerability that could allow an attacker to escalate privileges.Due to a limitation in...

Understanding The Difference Between DDR and EDR

Cybersecurity is infamous for its acronyms. From APT to ZTNA, it is easy to get bogged down in the quagmire of jargon that, whether...

Hackers Injected Credit Card Skimmers to 500 Stores Running With Magento

On January 25, Sansec posted a tweet that nearly 300+ e-commerce stores were infected with malware. Sansec detected a massive data breach at 500...

Google Details Two Zero-Click Bugs in Zoom Clients That Let Attackers Execute Malicious Code

Two zero-click bugs in Zoom clients have been detected recently by the security analyst Natalie Silvanovich of Google's Project Zero that enables the threat...

Emergency Chrome Update Released to Patch Actively Exploited Zero-Day Bug

Google has announced an emergency update for Chrome (94.0.4606.61), and in this update, it has addressed Chrome’s 11th ‘zero days’ exploit of the year. In...

Microsoft Released a Largest-Ever Security Patch with the Fixes For 129 Vulnerabilities – Update Now

Microsoft released a security update under patch Tuesday with the fixes of 129 vulnerabilities, and this patch is the largest patch ever released by...

Critical VMware Flaw Let Attackers to Hack VMware vCenter Server

VMware patches a critical security vulnerability that allows malicious attackers to obtain sensitive information.The vulnerability can be tracked as CVE-2020-3952, it is rated as...