Zero Day Apple Vulnerability Under Active Attack
Jul28

Zero Day Apple Vulnerability Under Active Attack

Apple is urging users of iPhones, iPads, and Macs to install the operating system updates it released on Monday, as the vulnerability in iOS and macOS that was corrected is now being actively exploited in the wild. The vulnerability, tracked as CVE-2021-30807, is a memory corruption flaw in the IOMobileFrameBuffer extension used by iOS, iPadOS and macOS. IOMobileFrameBuffer is a kernel extension that manages the screen frame buffer....

Read More
Microsoft Publishes Mitigations for PetitPotam Attack on Windows NT LAN Manager
Jul27

Microsoft Publishes Mitigations for PetitPotam Attack on Windows NT LAN Manager

Microsoft has released mitigations for a new attack method involving Windows NT LAN Manager (NTLM), which could be exploited to force remote Windows systems to reveal password hashes, giving an attacker full control of a domain server and other Windows servers. Security researcher Gilles Lionel discovered it is possible to abuse legitimate functions using a new attack method dubbed ‘PetitPotam.’ A proof-of-concept (PoC) exploit was...

Read More
Microsoft 365 Apps and Services Will No Longer Support Internet Explorer from August 17, 2021
Jul26

Microsoft 365 Apps and Services Will No Longer Support Internet Explorer from August 17, 2021

On August 17, 2021, Microsoft 365 apps and services will no longer support Internet Explorer 11. Users who continue with Internet Explorer 11 after that date are likely to have a degraded experience or may be prevented from connecting to Microsoft 365 apps and services. Microsoft announced on August 17, 2020 that Microsoft 365 apps would no longer be supporting Internet Explorer 11, giving users 12 months to change to a supported...

Read More
Kaseya Obtains Universal REvil Ransomware Decryptor for Customers and Downstream Businesses
Jul23

Kaseya Obtains Universal REvil Ransomware Decryptor for Customers and Downstream Businesses

Kaseya has obtained a universal decryptor for REvil ransomware and will be working with all customers affected by its July 2021 ransomware attack, which affected around 60 of its customers and an estimated 1,500 downstream businesses. In early July, the REvil ransomware gang exploited one or more zero-day vulnerabilities in the Kaseya Virtual System/Server Administrator (VSA) platform, and then used the software update mechanism to...

Read More
Hundreds of Millions of Windows Computers Have 16-Year Old Printer Driver Vulnerability
Jul21

Hundreds of Millions of Windows Computers Have 16-Year Old Printer Driver Vulnerability

A high severity privilege escalation vulnerability has been identified in HP printer drivers, which are also used by Samsung and Xerox. Exploitation of the flaw would allow an attacker to bypass security products, gain admin privileges, install programs, create new accounts with elevated user permissions, and view, edit, encrypt, or delete data. According to a recently published report from SentinelOne, the flaw has been present in...

Read More