Security Update Archives | Threat Hunting

Week In Cyber News: Cerberus RAT new Variant, 2 WordPress Plugins Vulnerabilities, Cisco Webex Phishing Campaign, and More

Cyber AttacksBy SecureBug 11th May 2020 Leave a comment

Popular services, programs, and organizations have always been a target of cyber attacks to exploit the vulnerabilities in the service, steal users’ information, steal sensitive corporate information, or compromise the infrastructure. We have gathered the major cyber news over the past week including Cerberus RAT, WordPress plugins vulnerabilities, Cisco Webex phishing emails, Cisco update, and…

Ubuntu 20.04 LTS is out

Information SecurityBy SecureBug 26th April 2020 Leave a comment

Canonical has released the latest version of its Ubuntu Linux, one of the most popular Linux distributions; which offers several exciting new features designed to improve performance and security; including a built-in VPN, support for ExFat and ZFS, and more. Ubuntu 20.04 “Focal Fossa” is now available for download. Ubuntu 20.04 LTS is a long-term…

Microsoft released out-of-band security update Microsoft Office and Paint 3D

VulnerabilitiesBy SecureBug 23rd April 2020 Leave a comment

A week after the April 2020 Patch Tuesday, Microsoft released an out-of-band security update that fixes remote code execution vulnerabilities in Office, Office 365 ProPlus, and Paint 3D. The applications are affected by multiple Autodesk vulnerabilities that, if exploited, could enable remote code execution. The newly disclosed bugs stem from the Autodesk’s library for the FBX…

Intel Patches Security Vulnerabilities in Latest Update

Information SecurityBy SecureBug 17th April 2020 Leave a comment

Intel addressed medium and high-severity vulnerabilities in its April 2020 security update; the vulnerabilities in Intel software and firmware programs could potentially allow attackers to launch denial-of-service (DoS) attacks and enables escalation of privilege. Out of the 6 vulnerabilities Intel addressed in the security update published on April 14, 3 of them were patched, and…

Adobe patched five vulnerabilities in its products

VulnerabilitiesBy SecureBug 16th April 2020 Leave a comment

Adobe has patched five vulnerabilities as part of its regularly scheduled security updates for April on Tuesday. The RCE flaws exist in its ColdFusion, After Effects and Digital Editions products. If exploited, the flaws could enable attackers to view sensitive data, gain escalated privileges, and launch denial-of-service attacks. “Adobe has published security bulletins for Adobe…

April 2020 patch tuesday: Microsoft patches 3 high severity vulnerabilities

VulnerabilitiesBy SecureBug 15th April 2020 Leave a comment

Microsoft has released today its monthly roll-up of security updates known as Patch Tuesday. In April 2020, Microsoft fixes a total of 113 vulnerabilities in its products; 15 of which are classified as Critical, 93 as Important, 3 as Moderate, and 2 as Low. Interestingly, Microsoft patched three zero-day vulnerabilities, with two of them being seen…

VMware patched critical flaw on vCenter Server

VulnerabilitiesBy SecureBug 14th April 2020 Leave a comment

VMware has fixed a critical vulnerability in its latest security update. The critical information-disclosure bug exists in the vCenter Server virtual infrastructure management platform. “With vCenter Server, virtual environments are easier to manage: a single administrator can manage hundreds of workloads, more than doubling typical productivity when managing physical infrastructure,” says VMware. The vulnerability in…

Adobe Patched Critical Vulnerability in Creative Cloud Application

VulnerabilitiesBy SecureBug 26th March 2020 Leave a comment

Adobe has released an out-of-band security update for its Creative Cloud Desktop Application for windows. The update includes a patch to fix a critical vulnerability that could allow attackers to delete specific arbitrary files on a vulnerable computer. Creative Cloud is a collection of 20+ desktop and mobile apps and services for photography, design, video, web,…

Apple Safari Updated to Block Third-Party Cookies

Network Security, VulnerabilitiesBy SecureBug 26th March 2020 Leave a comment

Apple on Tuesday released Safari 13.1 and updated the Intelligent Tracking Prevention (ITP) privacy feature. Intelligent Tracking Prevention allows Safari to block cookies and prevent advertisers from snooping on users’ web habits. According to Apple WebKit engineer John Wilander, Safari now blocks all third-party cookies. (WebKit is the browser engine that powers Safari.) That means that…

DDoS Botnets Exploited Multiple Zero-day Vulnerabilities in LILIN DVRs

VulnerabilitiesBy SecureBug 23rd March 2020 Leave a comment

Multiple Zero-day vulnerabilities in the DVRs of IP video manufacturer, LILIN, have been exploited by DDoS botnets to infect vulnerable devices. The LILIN DVR vulnerability was first reported in May 2019 and it has been exploited for more than six months before LILIN patched the flaw and released a firmware. Attackers used DDoS botnets to…

Tag Archives: Security Update