Patch/Configuration Management

Hotfixes have been revealed for three vulnerabilities affecting Sophos Firewall versions 21.0 GA and older, two of which were of critical severity, reports The Hacker News.

Vulnerability Management

Apple patches TCC bypass vulnerability

SC StaffDecember 19, 2024

The vulnerability, tracked as CVE-2024-44131, was discovered in the FileProvider component and has been fixed in iOS 18, iPadOS 18, and macOS Sequoia 15 through improved validation of symbolic links.

concept of leaky software, data with a tap sticking out.3d illustration

Data Security

Misconfiguration exposes Virtavo security cam user data

SC StaffDecember 18, 2024

Over 8.7 million records, many of which are duplicates, were discovered within the server, including user phone numbers, network information, device identifiers, performance metrics, and other personal details, according to Cybernews researchers.

Ransomware

Cleo vulnerability attacks claimed by Clop ransomware gang

Laura FrenchDecember 16, 2024

The group behind the 2023 MOVEit attacks says it is deleting previous victims’ data to focus on its Cleo campaign.

Computer repair concept. Hardware or software error.

Vulnerability Management

Immediate patching of actively exploited Cleo flaw urged

SC StaffDecember 13, 2024

Immediate blocking of IP addresses leveraging the issue has also been recommended by Cleo.

Fast Five

Selected by the SC Media Editorial team every Tuesday.

Sign up now for the top five issues cybersecurity pros need to know this week.

Patch/Configuration Management

Related Videos

A couple simple steps companies can take to protect their systems from ransomware

Palo Alto Networks patches DoS bug in PAN-OS software

Apache fixes Traffic Control bug that attackers could exploit

Hotfixes for Sophos firewall vulnerabilities released