Author: DEFENDEDGE

  • F5 Security Advisory for RCE Vulnerabilities in BIG-IP, BIG-IQ

    Original release date: March 10, 2021 F5 has released a security advisory to address remote code execution (RCE) vulnerabilities—CVE-2021-22986, CVE-2021-22987—impacting BIG-IP and BIG-IQ devices. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators review the F5 advisory and install updated software as soon as possible. This… Read more

  • Microsoft Releases March 2021 Security Updates

    Original release date: March 10, 2021 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s March 2021 Security Update Summary and Deployment Information and apply the necessary updates. This… Read more

  • Apple’s Device Location-Tracking System Could Expose User Identities

    Researchers have identified two vulnerabilities in the company’s crowd-sourced Offline Finding technology that could jeopardize its promise of privacy. Read more

  • Breach Exposes Verkada Security Camera Footage at Tesla, Cloudflare

    Surveillance footage from companies such as Tesla as well as hospitals, prisons, police departments and schools was accessed in the hack. Read more

  • SAP Releases March 2021 Security Updates

    Original release date: March 9, 2021 SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators to review the SAP Security Notes for March 2021 and apply the necessary updates.  This product is provided subject… Read more

  • Microsoft Patch Tuesday Updates Fix 14 Critical Bugs

    Microsoft’s regularly scheduled March Patch Tuesday updates address 89 CVEs overall. Read more

  • Dark Web Markets for Stolen Data See Banner Sales

    Despite an explosion in the sheer amount of stolen data available on the Dark Web, the value of personal information is holding steady, according to the 2021 Dark Web price index from Privacy Affairs. That leaves these thriving dirty data dealers in a familiar predicament — they need to lock down their growing businesses for… Read more

  • Adobe Critical Code-Execution Flaws Plague Windows Users

    The critical flaws exist in Adobe Framemaker, Connect and the Creative Cloud desktop application for Windows. Read more

  • Adobe Releases Security Updates

    Original release date: March 9, 2021 Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Framemaker APSB21-14 Creative Cloud Desktop… Read more

  • Apple Plugs Severe WebKit Remote Code-Execution Hole

    Apple pushed out security updates for a memory-corruption bug to devices running on iOS, macOS, watchOS and for Safari. Read more