Apple released emergency security updates to fix two zero-day vulnerabilities that were exploited in attacks on Intel-based Mac systems. […]
CISA tags Progress Kemp LoadMaster flaw as exploited in attacks
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three new flaws in its Known Exploited Vulnerabilities (KEV) catalog, including a critical OS command injection impacting Progress Kemp LoadMaster. […]
Apple Confirms Zero-Day Attacks Hitting Intel-based Macs
Apple rushes out out major macOS and iOS security updates to cover a pair of vulnerabilities already being exploited in the wild.
The post Apple Confirms Zero-Day Attacks Hitting Intel-based Macs appeared first on SecurityWeek.
Ford investgates alleged breach following customer data leak
Ford is investigating allegations that it suffered a data breach after a threat actor claimed to leak 44,000 customer records on a hacking forum. […]
Oracle warns of Agile PLM file disclosure flaw exploited in attacks
Oracle has fixed an unauthenticated file disclosure flaw in Oracle Agile Product Lifecycle Management (PLM) tracked as CVE-2024-21287, which was actively exploited as a zero-day to download files. […]
Vulnerable Jupyter Servers Targeted for Sports Piracy
Misconfigured instances of JupyterLab and Jupyter Notebook have been targeted by threat actors for sports stream ripping.
The post Vulnerable Jupyter Servers Targeted for Sports Piracy appeared first on SecurityWeek.
D-Link urges users to retire VPN routers impacted by unfixed RCE flaw
D-Link is warning customers to replace end-of-life VPN router models after a critical unauthenticated, remote code execution vulnerability was discovered that will not be fixed on these devices. […]
Employee Data Compromised in Hacker Attack on Space Technology Firm Maxar
Satellite maker Maxar Space Systems has disclosed a data breach impacting the personal information of its employees.
The post Employee Data Compromised in Hacker Attack on Space Technology Firm Maxar appeared first on SecurityWeek.
Microsoft now testing hotpatch on Windows 11 24H2 and Windows 365
Microsoft announced today that hotpatching is now also available in preview on Windows 365 and Windows 11 Enterprise 24H2 client devices. […]
CISA Director Jen Easterly to Step Down
A CISA told SecurityWeek that all appointees of the Biden-Harris administration will leave by noon on inauguration day.
The post CISA Director Jen Easterly to Step Down appeared first on SecurityWeek.