28 Mar, 2023
0-day, Apple, Exploit, iOS, iPad, iPadOS, iPhone, macOS, Security News, Vulnerability, zero day
by Paul Ducklin Apple’s latest update blast is out, including an extensive range of security patches for all devices that Apple offcially supports. There are fixes for iOS, iPadOS, tvOS and watchOS, along with patches for all three supported flavours of macOS, and even a special update to the firmware . . . Read more
15 Mar, 2023
0-day, Exploit, Microsoft, MOTW, NTLM v2, Outlook, patch tuesday, Security News, SmartScreen, Vulnerability, Windows, zero day
by Paul Ducklin Thanks to the precise four-week length of February this year, last month’s coincidence of Firefox and Microsoft updates has happened once again. Last month, Microsoft dealt with three zero-days, by which we mean security holes that cybercriminals found first, and figured out how to abuse in real-life . . . Read more
16 Feb, 2023
Apple, cybercrime, Exploit, Hacking, Microsoft, Naked Security Podcast, patch tuesday, podcast, Reddit, Security News, Vulnerability, zero day
Latest episode – listen now! (Full transcript inside.)
Everyone update now! Except for those who don’t need to! Or who need to but will only get updates later on, though Apple isn’t saying yet!
26 Jan, 2023
Apple, Data loss, DNS, google, GoTo, lastpass, podcast, Security News, Vulnerability, zero day
Lastest episode – listen now! (Or read the transcript.)
24 Jan, 2023
Apple, CVE-2022-42856, Exploit, iOS, ios 12, iPadOS, macOS, Security News, Ventura, Vulnerability, zero day
Don’t delay, especially if you’re still running an iOS 12 device… please do it today!
15 Dec, 2022
0-day, Apple, Ben-Gurion University, Data loss, iOS, Malware, Microsoft, Naked Security Podcast, podcast, Privacy, Security News, skimming, supply chain, Vulnerability, zero day
Return o’ the rookit, super-sneaky wireless spyware, credit card skimming, and patches galore. Listen and learn!
05 Dec, 2022
chrome, Chromium, CVE-2022-4262, Edge, google, Google Chrome, Microsoft, Security News, Vulnerability, zero day
Ninth more unto the breach, dear friends, ninth more.
There isn’t a rhyme to remind you which months have browser zero-days… you just have to keep your eyes and ears open!
Review your servers, your patches and your authentication policies – there’s a proof-of-concept out