Google have released an emergency update for Google Chrome for Desktop to address a publicly disclosed vulnerability that has active exploits in the wild. This is the seventh zero-day vulnerability that has been fixed in Google Chrome so far in 2022. A blog post on the Chrome Releases Google blog was published last week with […]
Google Chrome Zero-Day Actively Exploited Read More »
A new security update released by Apple yesterday patches 20 different vulnerabilities on iPhone and iPad OS. Users can now update to iOS 16.1 and iPadOS 16 to apply these security patches and protect their devices. 14 of the vulnerabilities addressed in this update allow the execution of arbitrary code, 9 of which can execute
Apple Patch Actively Exploited Zero-Day Flaw Read More »
A spoofing vulnerability in Microsoft Azure Service Fabric can be exploited by attackers to gain admin privileges and take over Service Fabric clusters. Although there are not currently reports of this vulnerability being exploited in the wild, proof of concept (PoC) code for this attack vector does exist. Cloud security platform Orca Security first discovered
Microsoft Azure Vulnerability Exploit in SF Clusters Read More »
An actively exploited zero-day flaw that prevents Windows from properly identifying potentially malicious documents by flagging them as downloaded from the web has been given an unofficial patch. The security issue was first brought to Microsoft’s attention by a security researcher 3 month ago, however no official update to correct this has been released. Security
Windows Zero-Day Flaw Gets Free Unofficial Patch Read More »
A communication has been sent by Fortinet to their customers confirming a critical severity vulnerability in FortiOS and FortiProxy. The global cyber security company have warned administrators to update FortiGate firewalls and FortiProxy web proxies to the latest available versions to address this vulnerability. Although a full security advisory has not been released yet for
Fortinet Critical Authentication Bypass Vulnerability Read More »
The recent Windows 11 2022 Update has been experiencing issues and failing to finish installing due to provisioning issues, leaving some partially configured endpoints vulnerable. Also known as version 22H2, this update immediately impacted some users by causing Remote Desktop clients to not connect, randomly disconnect, or freeze unexpectedly. Since then, Microsoft have released issue
Issues with Windows 11 22H2 Update Addressed Read More »
A Zoho ManageEngine vulnerability has been added to the Cybersecurity and Infrastructure Security Agency’s (CISA) known exploited vulnerabilities catalog last week. This remote code execution (RCE) vulnerability affects Password Manager Pro versions 12100 and below, Access Manager Plus versions 4302 and below, and PAM360 versions 5500 and below. Proof of concept (POC) code for an
RCE Vulnerability in Password Manager Pro Read More »
The latest Patch Tuesday from Microsoft included security updates released to patch a total of 63 vulnerabilities. This includes 5 vulnerabilities that have been given a ‘critical’ severity rating, due to the possibility of an exploit of these flaws resulting in remote code execution (RCE) on the target device. Two of these are zero-day flaws,
Microsoft Patch Critical and Zero-Day Flaws Read More »
Four vulnerabilities in D-Link routers have been added to the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities Catalog this week. Also included in this week’s catalogue updates were now-patched zero-day vulnerabilities in Google Chrome, and Photo Station QNAP software. Three of the D-Link vulnerabilities identified as exploited by their addition to this list
Actively Exploited Vulnerabilities in D-Link Devices Read More »
A security vulnerability has been identified in HP’s in-built software HP Support Assistant, that is present on all HP and Omen laptops and desktop computers. HP Support Assistant is pre-installed on all HP and Omen devices, so all users of these devices could be at risk. A security bulletin has been released this week by
HP Patch Escalation of Privilege Flaw Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.