Technology giant Microsoft has exhorted users to stop telephone-based multi-factor authentication (MFA) solutions like one-time codes sent via SMS and voice calls. The company has instead asked users to replace them with newer MFA technologies, such as app-based authenticators and security keys. Alex Weinert, Director of Identity Security at Microsoft, Continue Reading
On Wednesday, search engine behemoth Google released Chrome version 86.0.4240.198 to fix two zero-day flaws that were used aggressively. These two vulnerabilities mark the fourth and fifth zero-days that the search engine giant has fixed in Chrome over the last couple of weeks. The difference, however, this time is that Continue Reading
On Tuesday, tech giant Microsoft released its monthly roll-up of security fixes known as Patch Tuesday. In November, the software conglomerate patched 112 security flaws across an extensive range of products, from Microsoft Edge to the Windows WalletService. This month’s fix also comprises a patch for a Windows zero-day flaw. Continue Reading
Today, Apple released security updates for iOS to patch three zero-day vulnerabilities found to be exploited in attacks on its users. The three iOS zero-days are linked to the latest spat of three Chrome zero-days and a Windows zero-day that Google had previously announced during the past two weeks, according Continue Reading
Cisco today disclosed a zero-day vulnerability with proof-of-concept attack code publicly accessible in the Cisco AnyConnect Secure Mobility Client software. While security patches for this arbitrary code execution flaw are still not available, Cisco is working to resolve the zero-day issue, with a patch coming in a future version of Continue Reading
By