01 December 2023

Apple released crucial updates for iOS, iPadOS, macOS, and Safari to address actively exploited vulnerabilities in the WebKit browser engine. The flaws could lead to out-of-bounds read issues and potential exploitation.


WhatsApp introduced a new Secret Code feature enabling users to hide locked chats by setting a custom password.


IT outages affected Capital Health hospitals and physician offices in New Jersey after a cyberattack targeted the non-profit organization's network earlier this week.


The U.S. Department of the Treasury sanctioned the North Korea-linked adversarial collective, Kimsuky, and eight foreign-based agents for aiding revenue generation and missile-related technology procurement that supports DPRK's strategic goals.


Cactus ransomware has been exploiting critical vulnerabilities in the Qlik Sense data analytics solution to gain initial access to corporate networks.



Security Updates and Fixes:


Zyxel issued patches for 15 security issues affecting NAS, firewall, and access point devices, including critical vulnerabilities leading to authentication bypass and command injection.


Emergency updates from Apple addressed two zero-day vulnerabilities exploited in attacks affecting iPhone, iPad, and Mac devices, marking 20 zero-days patched this year.


Zyxel addressed multiple security issues in NAS devices, including three critical vulnerabilities allowing unauthenticated attackers to execute OS commands.


A newly discovered Android malware, FjordPhantom, utilizes virtualization to run malicious code within a container to avoid detection.


zero-dayapplemacosexploitfjordphantomzyxelqlikkoreawhatsapp

Newsletter

Subscribe to our newsletter to stay informed about CyberSecurity news. You can unsubscribe at any time.

More than Cyber Security

We offer a variety of services to help companies be prepared for real cyber-attacks.

Contact Us