Grab those updates: Microsoft flings out fixes for already-exploited bugs
Patch Tuesday Plus: Adobe and Android also tackle abused-in-the-wild flaws
Patches12 Sep 2023 | 5
Patches
Chrome, Firefox and more caught with their WebP down, offer hasty patch-up
Updated Exploit observed in the wild against codec lib in browsers, apps
Patches12 Sep 2023 | 9
You patched yet? Years-old Microsoft security holes still hot targets for cyber-crooks
We're number one! We're number one! We're...
Patches05 Sep 2023 | 15
Ivanti Sentry exploited in the wild, patches emitted
Good thing you're not exposing admin port 8443 to the world, right? Uh, right?
Patches22 Aug 2023 | 7
Don't just patch your Citrix gear, check for intrusion: Two bugs exploited in wild
Updated About 2,000 NetScaler installations feared compromised as CISA raises alarm over ShareFile
Patches17 Aug 2023 | 3
Magento shopping cart attack targets critical vulnerability revealed in early 2022
Really? You didn't bother to patch a 9.8 severity critical flaw?
Patches11 Aug 2023 | 7
Nearly every AMD CPU since 2017 vulnerable to Inception data-leak attacks
It's like a nesting doll of security flaws
Patches09 Aug 2023 | 32
Microsoft, Intel lead this month's security fix emissions
Patch Tuesday Downfall processor leaks, Teams holes, VPN clients at risk, and more
Patches08 Aug 2023 | 8
Prepare for plenty more pain from Ivanti's MDM flaws, warn cyber agencies
Invaders already spent four or more months frolicking inside Norwegian government servers
Patches03 Aug 2023 | 7
Sneaky Python package security fixes help no one – except miscreants
Good thing these eggheads have created a database of patches
Patches26 Jul 2023 | 9
Ivanti plugs critical bug – but not before it was used against Norwegian government
Uncle Sam warns sysadmins to get patching as soon as possible
Patches26 Jul 2023 | 5
Apple patches exploited bugs in iPhones plus other holes
One spotted by Amnesty International - wonder what that was used for?
Patches25 Jul 2023 | 13
Quick: Manually patch this Zimbra bug that's under attack
Smells like Russian cyber spies (again)
Patches17 Jul 2023 | 3
Miscreants exploit five Microsoft bugs as Windows giant addresses 130 flaws
Patch Tuesday Plus: Apple bungles another rapid security response; important ICS updates land; and more
Patches11 Jul 2023 | 14
You've patched right? '340K+ Fortinet firewalls' wide open to critical security bug
That's a vulnerability that's under attack, fix available ... cancel those July 4th plans, perhaps?
Black Hat and DEF CON03 Jul 2023 | 13
A (cautionary) tale of two patched bugs, both exploited in the wild
One affects VMware's monitoring tool and the other TP-Link routers
Patches21 Jun 2023 | 8
Apple squashes kernel bug used by TriangleDB spyware
Snoops may be targeting macOS in addition to iPhones, Kaspersky says
Patches21 Jun 2023 | 3
Guess what happened to this US agency using outdated software?
Infosec in brief Also: Hackers target security researchers, MaaS model flourishing, and this week's vulnerabilities
Patches19 Jun 2023 | 16
Third MOVEit bug fixed a day after PoC exploit made public
Millions of people's personal info swiped, Clop leaks begin with 'Shell's stolen data'
Patches16 Jun 2023 | 18
June Patch Tuesday: VMware vuln under attack by Chinese spies, Microsoft kinda meh
Plus: Adobe, SAP and Android push updates
Patches13 Jun 2023 | 2
Fortinet squashes hijack-my-VPN bug in FortiOS gear
And it's already being exploited in the wild, probably
Patches12 Jun 2023 | 2
Deployed publicly accessible MOVEit Transfer? Oh no. Mass exploitation underway
Time to MOVEit, MOVEit. We don't like to MOVEit, MOVEit
Patches01 Jun 2023 | 10
Barracuda Email Security Gateways bitten by data thieves
Act now: Sea-themed backdoor malware injected via .tar-based hole
Patches31 May 2023 | 8
Cisco squashes critical bugs in small biz switches
You'll want to patch these as proof-of-concept exploit code is out there already
Patches18 May 2023 |
Intel says Friday's mystery 'security update' microcode isn't really a security update
We're all for encouraging people to squash bugs but this is an odd way to do it
Patches15 May 2023 | 7
Why Microsoft just patched a patch that squashed an under-attack Outlook bug
Let's take a quick dive into Windows API
Patches12 May 2023 | 45
Two Microsoft Windows bugs under attack, one in Secure Boot with a manual fix
Patch Tuesday On the plus side, this month's update batch is a bit smaller than usual
Patches09 May 2023 | 20
WordPress plugin hole puts '2 million websites' at risk
XSS marks the spot
Patches08 May 2023 | 17
Apple pushes first-ever 'rapid' patch – and rapidly screws up
Maybe you're just installing it wrong?
Patches02 May 2023 | 43
Mirai botnet loves exploiting your unpatched TP-Link routers, CISA warns
Oracle and Apache holes also on Uncle Sam's list of big bad abused bugs
Patches02 May 2023 | 1
Apache Superset: A story of insecure default keys, thousands of vulnerable systems, few paying attention
Two out of three public-facing app instances open to hijacking
Patches25 Apr 2023 | 18
Military helicopter crash blamed on failure to apply software patch
A rather nice beach in Australia now briefly hosted an unusual feature
Patches18 Apr 2023 | 49
April Patch Tuesday: Ransomware gangs already exploiting this Windows bug
Plus Google, SAP, Adobe and Cisco emit fixes
Patches11 Apr 2023 | 9
Apple squashes iOS, macOS zero-day bugs already exploited by snoops
Keep calm and install patches before abuse becomes widespread
Patches10 Apr 2023 | 1
Apple patches all the iThings, including iOS 15 hole under attack right now
Issue identified in February but owners of older kit weren't warned
Patches28 Mar 2023 | 11
Google: Turn off Wi-Fi calling, VoLTE to protect your Android from Samsung hijack bugs
Four flaws open mobiles, cars to remote-control at baseband level with just a phone number
Patches17 Mar 2023 | 40
Microsoft: Patch this severe Outlook bug that Russian miscreants exploited
Patch Tuesday Plus: Fixes for SAP, Adobe. Android, Chrome
Patches14 Mar 2023 | 38
Microsoft squashes Windows bug exploited to inflict ransomware misery
Not-so-smart SmartScreen flagged up by Googlers
Patches14 Mar 2023 | 5
Antivirus apps are there to protect you – Cisco's ClamAV has a heckuva flaw
Switchzilla hardware and software need attention, unless you fancy arbitrary remote code execution
Patches17 Feb 2023 | 7
VMware, Windows 11 shafted by Windows Server 2022
Updated OS won't start on some systems with ESXi VMs, while Win11 updates may not make it to devices
Patches16 Feb 2023 | 18
Intel patches up SGX best it can after another load of security holes found
Plus bugs squashed in Server Platform Services and more
Patches15 Feb 2023 | 4
Hyundai and Kia issue software upgrades to thwart killer TikTok car theft hack
Gone in 60 seconds using a USB-A plug and brute force instead of a key
Patches15 Feb 2023 | 57
Apple splats zero-day bug, other gremlins in macOS, iOS
WebKit flaw 'may have been exploited' – just like Tim Cook 'may have' made a million bucks this week
Patches15 Feb 2023 | 7
Microsoft sweeps up after breaking .NET with December security updates
XPS doc display issues fixed – until the next patch, at least
Patches01 Feb 2023 | 3
Microsoft to enterprises: Patch your Exchange servers
If you want to keep the miscreants out, put the updates in, Redmond says
Patches28 Jan 2023 | 14
Logfile management is no fun. Now it's a nightmare thanks to critical-rated VMware flaws
You know the drill: patch before criminals use these bugs in vRealize to sniff your systems
Patches25 Jan 2023 |
Russians say they can grab software from Intel again
And Windows updates from Microsoft, too
Patches14 Jan 2023 | 52
Microsoft fixes Windows database connections it broke in November
January Patch Tuesday update resolves issue caused by Patch Tuesday update late in '22
Patches11 Jan 2023 | 3
First Patch Tuesday of the year explodes with in-the-wild exploit fix
Patch Tuesday Plus: Intel, Adobe, SAP and Android bugs
Patches11 Jan 2023 | 17
Microsoft fixes Hyper-V VM problem caused by Patch Tuesday
The emergency OOB release should solve those frustrating failures
Patches21 Dec 2022 | 1
Patch Tuesday update is causing some Windows 10 systems to blue screen
Microsoft issues a workaround for problem while it works on a fix
Patches20 Dec 2022 | 51
Patch Tuesday updates spark errors when creating Hyper-V VMs
Something's broken, mom! Microsoft offers workaround while trying to think up a fix
Patches14 Dec 2022 | 10
Microsoft ain't the only one squashing exploited-in-the-wild bugs this month
Patch Tuesday Plus there's a PoC for this unpatched Cisco bug
Patches14 Dec 2022 | 10
Nvidia patches 29 GPU driver bugs that could lead to code execution, device takeover
Take a break from the gaming and fix these now
Patches01 Dec 2022 | 4
Windows Server domain controllers may stop, restart after recent updates
Microsoft outlines a workaround while pulling together a fix to LSASS memory leak
Patches28 Nov 2022 | 19
Microsoft's attempts to harden Kerberos authentication broke it on Windows Servers
Emergency out-of-band updates to the rescue
Patches21 Nov 2022 | 36
VMware warns of three critical holes in remote-control tool
Anyone can pretend to be your Windows IT support and take command of staff devices
Patches09 Nov 2022 |
Microsoft squashes six security bugs already exploited in the wild
Patch Tuesday Plus: Fixes from Intel, AMD, Citrix and more
Patches09 Nov 2022 | 5
OpenSSL downgrades horror bug after week of panic, hype
Relax, there's more chance of Babbage coming back to life to hack your system than this flaw being exploited
Patches01 Nov 2022 | 3
Unofficial fix emerges for Windows bug abused to infect home PCs with ransomware
Broken code signature? LGTM, says Microsoft OS
Patches01 Nov 2022 | 17
Biting the hand that feeds IT
