Microsoft has released a need-out-of-band software update for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 systems to patch two new recently public security vulnerabilities. Detected as CVE-2020-1530 and CVE-2020-1537, both have flaws in the Remote Access Service (RAS) in a way that manages memory and file actions …
Read More »Google Chrome Bug Could Hackers Bypass CSP Protection; Update web browsers
If you have not recently updated your Chrome, Opera, or Edge web browser to the latest available version, it would be a good idea to do so as soon as possible. Cybersecurity investigators on Monday released details of a zero-day bug in Chromium-based web browsers for Windows, Mac and Android …
Read More »Zoom Bug Allowed Snoopers crack private meeting passwords in minutes
The popular Zoom video conferencing application recently fixed a new security flaw that could have allowed potential attackers to crack the numerical access code used to secure private meetings on the platform and spy on participants. Zoom meetings are protected by default with a six-digit numeric password, but according to …
Read More »New Android malware now also steals passwords for non-bank apps
Cybersecurity researchers today discovered a new variety of banking malware that targets not only banking apps but also steals data and credentials from social media, dating, and cryptocurrency apps, totaling 337 non-financial Android apps on your target list. Dubbed “BlackRock” by ThreatFabric researchers, who discovered the Trojan in May, its …
Read More »17 Year Critical ‘Wormable’ RCE Vulnerability Affects Windows DNS Servers
Cybersecurity researchers today revealed a highly critical new “critical” vulnerability, with a severity score of 10 out of 10 on the CVSS scale, affecting versions of Windows Server 2003 to 2019. The 17-year remote code execution error (CVE-2020-1350), named ‘SigRed‘By Check Point, it could allow an unauthenticated remote attacker to …
Read More »