Category Archives: Patches

Oracle issues nearly 300 patches in quarterly update

Posted on April 18, 2019 by Danny Bradbury

Oracle’s latest security update covers 297 vulnerabilities, many of which come with a “patch now” warning. Continue reading Oracle issues nearly 300 patches in quarterly update→

Authentication Bypass Bug Hits Top Enterprise VPNs

Posted on April 15, 2019 by Tara Seals

Business users of Cisco, F5 Networks, Palo Alto Networks and Pulse Secure platforms are impacted, according the U.S. government. Continue reading Authentication Bypass Bug Hits Top Enterprise VPNs→

Magento Patches Critical SQL Injection and RCE Vulnerabilities

Posted on March 29, 2019 by Tom Spring

Magento patched 37 flaws Thursday, including a stored cross-site scripting (XSS) vulnerability that could have let an attacker take over a site. Continue reading Magento Patches Critical SQL Injection and RCE Vulnerabilities→

Bugs in Grandstream Gear Lay Open SMBs to Range of Attacks

Posted on March 25, 2019 by Tara Seals

Attackers can remotely compromise multiple network devices (IP PBX, conferencing gear and IP phones), installing malware and eavesdropping via video and audio functions. Continue reading Bugs in Grandstream Gear Lay Open SMBs to Range of Attacks→

Microsoft Windows 7 patch warns of coming patchocalypse

Posted on March 22, 2019 by Danny Bradbury

Microsoft has issued a patch to remind Windows 7 users that they’ll soon have no patches. Continue reading Microsoft Windows 7 patch warns of coming patchocalypse→

Intel releases patches for code execution vulnerabilities

Posted on March 18, 2019 by Danny Bradbury

Intel released patches last week, fixing a range of vulnerabilities that could allow attackers to execute code on affected devices. Continue reading Intel releases patches for code execution vulnerabilities→

RSA Conference 2019 Recap

Posted on March 8, 2019 by Lindsey O'Donnell

From privacy to patches, Threatpost editors discuss the biggest infosec news and trends that they saw this week at RSA Conference 2019. Continue reading RSA Conference 2019 Recap→

Active Scans Target Vulnerable Cisco Routers for Remote Code-Execution

Posted on January 28, 2019 by Tara Seals

Cyberattackers are targeting a pair of just-patched vulnerabilities that allow remote unauthenticated information disclosure leading to remote code-execution. Continue reading Active Scans Target Vulnerable Cisco Routers for Remote Code-Execution→

Windows 10 October 2018 Update is at last being pushed automatically

Posted on January 17, 2019 by Peter Bright

The update is still rolling out at a snail’s pace. Continue reading Windows 10 October 2018 Update is at last being pushed automatically→

Windows 7 enters its final year of free support

Posted on January 14, 2019 by Peter Bright

Up to three years of paid support will be available after the cut-off. Continue reading Windows 7 enters its final year of free support→