Tag: zero-day

Google squashes Android zero‑day bug exploited in targeted attacks

November 5, 2021

Beyond the vulnerability in the Android kernel, the monthly round of security patches plugs another 38 security loopholes. Google has released its monthly round of security patches for Android that plugs a bevy of vulnerabilities, including a zero-day flaw that is believed to be actively exploited in the wild by threat actors. “There are indications … More Google squashes Android zero‑day bug exploited in targeted attacks

Plugging the holes: How to prevent corporate data leaks in the cloud

September 23, 2021

Misconfigurations of cloud resources can lead to various security incidents and ultimately cost your organization dearly. Here’s what you can do to prevent cloud configuration conundrums. Forget shadowy attackers deploying bespoke zero-day exploits from afar. A risk that is far more real for organizations as they embark on ambitious digital transformation projects is human error. In fact, … More Plugging the holes: How to prevent corporate data leaks in the cloud

Apple releases patch for zero‑day flaw in iOS, iPadOS and macOS

July 28, 2021

The vulnerability is under active exploitation by unknown attackers and affects a wide range of Apple’s products. Apple has released an update for its iOS, iPadOS, and macOS operating systems to patch a zero-day security flaw that is being actively exploited in the wild. The vulnerability affects a wide range of its products including the … More Apple releases patch for zero‑day flaw in iOS, iPadOS and macOS

Google fixes actively exploited Chrome zero‑day

June 11, 2021

The latest Chrome update patches a bumper crop of security flaws across the browser’s desktop versions. Google has rolled out an update for its Chrome web browser to fix a bunch of security flaws, including a zero-day vulnerability that is known to be actively exploited by threat actors. The bugs affect the Windows, macOS, and … More Google fixes actively exploited Chrome zero‑day

Zero‑day in popular WordPress plugin exploited to take over websites

June 4, 2021

Websites using Fancy Product Designer are susceptible to remote code execution attacks even if the plugin is deactivated. Cybercriminals have been actively exploiting a zero-day vulnerability in Fancy Product Designer, a WordPress plugin used by more than 17,000 websites, according to a blog post by Defiant, which makes Wordfence security plugins for the web publishing platform. Attackers … More Zero‑day in popular WordPress plugin exploited to take over websites