patch

Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability

Jan 14, 2023 by iHash Leave a Comment

Jan 14, 2023Ravie LakshmananServer Security / Patch Management A majority of internet-exposed Cacti servers have not been patched against a recently patched critical security vulnerability that has come under active exploitation in the wild. That's according to attack surface management platform Censys, which found only 26 out of a total of 6,427 servers to be running a … [Read more...] about Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability

Microsoft Issues January 2023 Patch Tuesday Updates, Warns of Zero-Day Exploit

Jan 11, 2023 by iHash Leave a Comment

The first Patch Tuesday fixes shipped by Microsoft for 2023 have addressed a total of 98 security flaws, including one bug that the company said is being actively exploited in the wild. 11 of the 98 issues are rated Critical and 87 are rated Important in severity, with one of the vulnerabilities also listed as publicly known at the time of release. Separately, the Windows maker … [Read more...] about Microsoft Issues January 2023 Patch Tuesday Updates, Warns of Zero-Day Exploit

Fortinet and Zoho Urge Customers to Patch Enterprise Software Vulnerabilities

Jan 5, 2023 by iHash Leave a Comment

Jan 05, 2023Ravie LakshmananApplication Security / SQLi Fortinet has warned of a high-severity flaw affecting multiple versions of FortiADC application delivery controller that could lead to the execution of arbitrary code. "An improper neutralization of special elements used in an OS command vulnerability in FortiADC may allow an authenticated attacker with access to the web … [Read more...] about Fortinet and Zoho Urge Customers to Patch Enterprise Software Vulnerabilities

Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities

Dec 17, 2022 by iHash Leave a Comment

Dec 17, 2022Ravie LakshmananServer Security / Network Security Samba has released software updates to remediate multiple vulnerabilities that, if successfully exploited, could allow an attacker to take control of affected systems. The high-severity flaws, tracked as CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, and CVE-2022-45141, have been patched in versions 4.17.4, … [Read more...] about Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Dec 3, 2022 by iHash Leave a Comment

Search giant Google on Friday released an out-of-band security update to fix a new actively exploited zero-day flaw in its Chrome web browser. The high-severity flaw, tracked as CVE-2022-4262, concerns a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's Threat Analysis Group (TAG) has been credited with reporting the issue on November 29, 2022. Type … [Read more...] about Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

OpenSSL Releases Patch for 2 New High-Severity Vulnerabilities

Nov 1, 2022 by iHash Leave a Comment

The OpenSSL project has rolled out fixes to contain two high-severity flaws in its widely used cryptography library that could result in a denial-of-service (DoS) and remote code execution. The issues, tracked as CVE-2022-3602 and CVE-2022-3786, have been described as buffer overrun vulnerabilities that can be triggered during X.509 certificate verification by supplying a … [Read more...] about OpenSSL Releases Patch for 2 New High-Severity Vulnerabilities

October Patch Tuesday 2022: Updates and Analysis

Oct 30, 2022 by iHash Leave a Comment

Microsoft has released 84 security patches for its October 2022 Patch Tuesday rollout. Of these, 13 vulnerabilities are rated Critical, while the remaining 71 are rated Important. It should be noted that this month’s patching update does not include patches for ProxyNotShell, despite the active exploitation of two related vulnerabilities; CrowdStrike offers recommendations on … [Read more...] about October Patch Tuesday 2022: Updates and Analysis

Hackers Exploited Zero-Day RCE Vulnerability in Sophos Firewall — Patch Released

Sep 24, 2022 by iHash Leave a Comment

Security software company Sophos has released a patch update for its firewall product after it was discovered that attackers were exploiting a new critical zero-day vulnerability to attack its customers' network. The issue, tracked as CVE-2022-3236 (CVSS score: 9.8), impacts Sophos Firewall v19.0 MR1 (19.0.1) and older and concerns a code injection vulnerability in the User … [Read more...] about Hackers Exploited Zero-Day RCE Vulnerability in Sophos Firewall — Patch Released

Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability

Sep 3, 2022 by iHash Leave a Comment

Google on Friday shipped emergency fixes to address a security vulnerability in the Chrome web browser that it said is being actively exploited in the wild. The issue, assigned the identifier CVE-2022-3075, concerns a case of insufficient data validating in Mojo, which refers to a collection of runtime libraries that provide a platform-agnostic mechanism for inter-process … [Read more...] about Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability

August Patch Tuesday 2022: Updates and Analysis

Aug 27, 2022 by iHash Leave a Comment

Microsoft has released 121 security patches for its August 2022 Patch Tuesday rollout. Seventeen vulnerabilities are rated Critical in severity and the rest are classified as Important, with one (CVE-2022-34713) under active exploitation. In this blog, the CrowdStrike Falcon Spotlight™ team analyzes this month’s vulnerabilities, highlights the most severe CVEs and recommends … [Read more...] about August Patch Tuesday 2022: Updates and Analysis

Apple iPad mini 4, 128GB (Refurbished: Wi-Fi Only) for $228

Apple iPad mini 4, 16GB – Gold (Refurbished: Wi-Fi Only) for $170

Apple iPad mini 4, 64GB (Refurbished: Wi-Fi Only) for $193

eufy Security SoloCam L40 for $169

eufyCam E (2-Cam Kit) for $278