The Hacker News
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days
Microsoft has patched 61 new security flaws, including two zero-days actively exploited in the wild.
The Hacker News
Microsoft has patched 61 new security flaws, including two zero-days actively exploited in the wild.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
The Hacker News
Aruba Networking has released critical security patches for ArubaOS. Four flaws could allow remote code execution, giving attackers full control.
Security Affairs
HPE Aruba Networking addressed four critical remote code execution vulnerabilities impacting its ArubaOS network operating system.
Bleeping Computer
HPE Aruba Networking has issued its April 2024 security advisory detailing critical remote code execution (RCE) vulnerabilities impacting multiple versions of ArubaOS, its proprietary network operating system.
CyberNews
Deutsche Telekom, Orange, Airbus, and over a dozen more EU firms slam a new plan that would allow Amazon, Google, and Microsoft to bid for EU cloud computing contracts.
The Hacker News
Microsoft releases a massive patch for April 2024, fixing a record 149 flaws. Two vulnerabilities are ALREADY under attack.
SecurityWeek
Siemens and Schneider Electric release their ICS Patch Tuesday advisories for April 2024, informing customers about dozens of vulnerabilities.
The Hacker News
Microsoft releases Patch Tuesday updates to patch 61 new vulnerabilities, including privilege escalation flaws in Azure, Windows, & Authenticator.
Cyber Security News
Stay updated with the most recent advancements in the cybersecurity industry with our weekly recap of cybersecurity news.
Cyber Security News
Best Automatic WiFi Security Providers : 1. Perimeter 81 2. Cisco Systems 3. Fortinet 4. Palo Alto Networks 5. Aruba Networks 6. Sophos.
Cyber Security News
Best Network Security Providers for Education: 1. Perimeter81 2. Cisco Systems 3. Palo Alto Networks 5. Sophos 6. McAfee 7. Symantec.
Bleeping Computer
Hewlett Packard Enterprise (HPE) is investigating a potential new breach after a threat actor put allegedly stolen data up for sale on a hacking forum, claiming it contains HPE credentials and other sensitive information.
SecurityWeek
HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months.
SecurityWeek
HPE to acquire Juniper Networks for $14 billion to accelerate AI-Driven innovation and strengthen its high-margin networking business.
Cyber Security News
Wireshark is a popular open-source network protocol analyzer that is primarily used by security experts and network administrators.
The Hacker News
Microsoft has released fixes to address 63 security bugs in its software for the month of November 2023.
SecurityWeek
ICS Patch Tuesday: Siemens and Schneider Electric release over a dozen advisories addressing more than 40 vulnerabilities.
The Hacker News
Microsoft's October 2023 Patch Tuesday: 103 new vulnerabilities addressed, including 2 zero-days and 13 critical ones.
The Hacker News
September 2023 Patch Tuesday — Microsoft addresses 59 bugs, including actively exploited zero-day flaws
Cyber Security News
The latest attack techniques, significant weaknesses, and exploits have all been highlighted. We also provide the most latest software upgrades available to keep your devices secure.
Cyber Security News
Welcome to Cyber Writes' weekly Threat and Vulnerability Roundup, where we provide the most recent information on cybersecurity news. Take advantage of our extensive coverage and keep yourself updated.
The Hacker News
Microsoft's Patch Tuesday for August 2023 addresses 74 vulnerabilities in its software, including 6 Critical and 67 Important security flaws.
Cyber Security News
A total of 132 new security flaws in Microsoft's products were patched, including six zero-day issues that the company claimed were being actively used in the wild.
The Hacker News
Heads up, everyone! Microsoft has released updates to fix 130 security flaws, including 6 zero-day vulnerabilities being actively exploited.
DarkReading
The group has given one of Apple's biggest semiconductor suppliers until Aug. 6 to pay $70 million or risk having its data and "points of entry" to its network publicly leaked.
Ars Technica
The pernicious LockBit ransomware syndicate claims responsibility and demands $70 million.
The Hacker News
Microsoft's May Patch Tuesday includes fixes for 38 security flaws, including a zero-day bug under active exploitation.
The Hacker News
Microsoft has just released security updates for a whopping 97 software flaws, including one that's being actively exploited by ransomware attacks.
Bleeping Computer
Cybersecurity researchers have discovered a fundamental security flaw in the design of the IEEE 802.11 WiFi protocol standard, allowing attackers to trick access points into leaking network frames in plaintext form.
The Hacker News
Microsoft's latest Patch Tuesday update for March 2023 is here with fixes for 80 security flaws, including two actively exploited vulnerabilities.
CSO
HPE plans to expand its Aruba SASE platform with Axis Security’s Atmos, delivering a comprehensive edge-to-cloud, network and security solution as a service.
The Hacker News
Cisco has just released a security update to fix a critical vulnerability (CVE-2023-20078) in its IP Phone 6800, 7800, 7900, and 8800 Series products.
Bleeping Computer
Aruba Networks published a security advisory to inform customers about six critical-severity vulnerabilities impacting multiple versions of ArubaOS, its proprietary network operating system.
SecurityWeek
Siemens and Schneider Electric have released their Patch Tuesday security advisories for November 2022.
SecurityWeek
Palo Alto Networks and Aruba have each announced patches for serious authentication bypass vulnerabilities affecting their products.
Security Affairs
Aruba addressed multiple critical severity vulnerabilities in the EdgeConnect Enterprise Orchestrator. Aruba addressed multiple critical severity vulnerabilities in the EdgeConnect Enterprise Orchestrator that can be exploited by remote attackers to compromise the vulnerable host. Aruba EdgeConnect Orchestrator is a centralized SD-WAN management solution that allows enterprises to control their WAN. Below are the vulnerabilities addressed […]
CyberSecurity Dive
Recent flaws earned the company CISA's 10th emergency directive, the latest in a series of potential high-impact flaws for enterprise users.
SecurityWeek
Google Project Zero has disclosed the details of a zero-click remote code execution exploit targeting Zoom.
SecurityWeek
HP patches two high-severity vulnerabilities that impact the UEFI firmware of more than 200 laptops, workstations, and other products.
Cyber Security News
The security analysts at Armis discovered that several devices using Mocana NanoSSL are being sabotaged by the same problem even though they may come from two distinct switch vendors, but they got affected by the same misuse of NanoSSL.
The Record
The two companies' widely used Aruba and Avaya network switches have vulnerabilities in NanoSSL, a popular library for the TLS protocol.
The Hacker News
Researchers have discovered 5 new security vulnerabilities in multiple models of Aruba and Avaya network switches.
SecurityWeek
TLStorm 2.0 vulnerabilities can be exploited to remotely hack Aruba and Avaya switches and abuse them to gain access to enterprise networks.
Bleeping Computer
Security researchers have discovered five vulnerabilities in network equipment from Aruba (owned by HP) and Avaya (owned by ExtremeNetworks), that could allow malicious actors to execute code remotely on the devices.
CSO
The network switch vulnerabilities are considered critical and could allow attackers to break network segmentation, exfiltrate data, and escape captive portals.
CyberSecurity Dive
Researchers previously found similar vulnerabilities in Smart-UPS devices.
CSO
With lead times as long as 400 days, enterprises need to start looking at alternative ways to get the network equipment they need.
ZDNet
The new EdgeConnect Microbranch solution promises to bring office-level networking capabilities to home offices via a single Wi-Fi access point.
DataBreaches
Lawrence Abrams reports: HPE has disclosed that data repositories for their Aruba Central network monitoring platform were compromised, allowing a threat actor...
Bleeping Computer
Newly discovered Wi-Fi security vulnerabilities collectively known as FragAttacks (fragmentation and aggregation attacks) are impacting all Wi-Fi devices (including computers, smartphones, and smart devices) going back as far as 1997.