Patches – PossibleThreat Articles

Microsoft Revokes Malicious Drivers in Patch Tuesday Culling

July 11, 2023 0 Comments 2023-07, anti-edr, drivers, drivers.stl, EDR, featured, fivesys, fk_undead, fu rootkit, netfilter, Patch Tuesday, Patches, rootkit, sophos x-ops, threat research, uac, wfp, windows filtering platform, windows update

Credit to Author: Andrew Brandt| Date: Tue, 11 Jul 2023 17:20:38 +0000

In December 2022, Microsoft published their monthly Windows Update packages that included an advisory about malicious drivers, signed by Microsoft and other code-signing authorities, that Sophos X-Ops (and others) observed threat actors abusing during attacks. Today, Microsoft issued Security Advisory ADV230001 as part of their July Windows Update that addresses Sophos’ discovery of more than […]

Security Sophos

Firefox 114 is out: No 0-days, but one fascinating “teachable moment” bug

June 7, 2023 0 Comments cve-2023-34414, firefox, Mozilla, Patches, vulnerability

Credit to Author: Paul Ducklin| Date: Wed, 07 Jun 2023 17:59:10 +0000

With the right (or wrong, if you’re on the right side of the fence) timing…

Security Sophos

Dangerous Android phone 0-day bugs revealed – patch or work around them now!

March 17, 2023 0 Comments Android, Google, Patches, rce, Samsung, vulnerability

Credit to Author: Paul Ducklin| Date: Fri, 17 Mar 2023 17:56:10 +0000

Despite its usually inflexible 0-day disclosure policy, Google is keeping four mobile modem bugs semi-secret due to likely ease of exploitation.

Security Sophos

S3 Ep107: Eight months to kick out the crooks and you think that’s GOOD? [Audio + Text]

November 3, 2022 0 Comments Apple, bust, Cybercrime, cyberextortion, data breach, data loss, Google, heartbleed, Law & order, malware, Naked Security Podcast, OpenSSL, Patches, Podcast, Privacy, vulnerability

Credit to Author: Paul Ducklin| Date: Thu, 03 Nov 2022 17:51:27 +0000

Listen now – latest episode – audio plus full transcript

Security Sophos

S3 Ep77: Bugs, busts and old-school PDP-11 hacking [Podcast]

April 7, 2022 0 Comments Android, Apple, Cybercrime, data breach, firefox, Google, iOS, lapsus, Law & order, Mozilla, Naked Security Podcast, OS X, Patches, Podcast, Privacy, vulnerability

Credit to Author: Paul Ducklin| Date: Thu, 07 Apr 2022 12:24:59 +0000

Latest episode – listen now! Cybersecurity news and advice in plain English.

MalwareBytes Security

The struggle to reduce bug-fixing time is real

March 7, 2022 0 Comments bod 22-01, bug-fixing time, catalog, cisa, cve-2022-22587, Exploits and vulnerabilities, Patches, zdi, zero day

Credit to Author: Pieter Arntz| Date: Mon, 07 Mar 2022 20:06:37 +0000

Vendors want to fix their bugs as soon as possible. We look at how the big vendors are doing, and what the end user can do.

The post The struggle to reduce bug-fixing time is real appeared first on Malwarebytes Labs.

Security Sophos

Nvidia patches severe flaws affecting GeForce, Quadro NVS and Tesla

March 3, 2020 0 Comments cve vulnerabilities, cve‑2020‑5957, cve‑2020‑5958, cve‑2020‑5959, cve‑2020‑5960, cve‑2020‑5961, CVEs, geforce, gpu display, Linux, malware, Microsoft, NVIDIA, nvidia gpu, nvs, Operating Systems, Patches, Patching, quadro, security threats, tesla, vulnerability, Windows, windows gpu display driver

Credit to Author: John E Dunn| Date: Tue, 03 Mar 2020 11:09:05 +0000

In all, the update covers five Windows and Linux desktop CVE vulnerabilities, including one rated as critical.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YitOMgSO498″ height=”1″ width=”1″ alt=””/>

Security Sophos

Critical Android flaws patched in February bulletin

February 5, 2020 0 Comments Android, android open source project, critical flaws, cve-2020-0022, cve-2020-0023, CVEs, flaws, Google, google pixel, Mobile, Operating Systems, Patches, Patching, Pixel, qualcomm, rce, security threats, vulnerability

Credit to Author: Danny Bradbury| Date: Wed, 05 Feb 2020 11:46:14 +0000

Google has patched Android bugs that include a couple of critical flaws that could let hackers run their own code on the mobile operating system.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/k2wIz5MF-3I” height=”1″ width=”1″ alt=””/>

Security Sophos

Cisco patches bugs in security admin center and Webex

January 28, 2020 0 Comments Cisco, critical patch, firepower management centre, fmc, Patches, security threats

Credit to Author: Danny Bradbury| Date: Tue, 28 Jan 2020 10:50:02 +0000

Cisco has patched bugs in Webex and in Firepower Management Centre, the device that controls its security products.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/RKqRqaSNXxc” height=”1″ width=”1″ alt=””/>

Security Sophos

Microsoft fixes critical bugs in CryptoAPI, RD Gateway and .NET

January 15, 2020 0 Comments Adobe, barcelona, CVEs, Microsoft, Operating Systems, Patch Tuesday, Patches, rce, rd gateway, RDP, remote code execution, security threats, vulnerability, Windows, windows remote desktop gateway, windows server

Credit to Author: Danny Bradbury| Date: Wed, 15 Jan 2020 12:10:33 +0000

Here are the most serious bugs from Microsoft’s Patch Tuesday – Including CryptoAPI and RCE flaws in Windows Remote Desktop Gateway.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/_JcrLmlUQmc” height=”1″ width=”1″ alt=””/>

← Previous