The company's final patch release for 2023 contained fixes for a total of just 36 vulnerabilities — none of which, for a change, were zero-days.
| | | LATEST SECURITY NEWS & COMMENTARY | | Microsoft Gives Admins a Reprieve With Lighter-Than-Usual Patch Update The company's final patch release for 2023 contained fixes for a total of just 36 vulnerabilities — none of which, for a change, were zero-days. Ransomware Gangs Use PR Charm Offensive to Pressure Victims Threat actors are fully embracing the spin machine: rebranding, speaking with the media, writing detailed FAQs, and more, all in an effort to make headlines. Dozens of Bugs Patched in Apple TVs and Watches, Macs, iPads, iPhones A laundry list of tweaks to Safari, Bluetooth, Accessibility, and much more. Kyivstar Mobile Attack Plunges Millions in Ukraine Into Comms Blackout The destructive attack, likely carried out by Russian actors, is the biggest hit on the country's basic infrastructure since the beginning of the war. Debate Roils Over Extent of Nation-State Cyber Involvement in Gaza Are hacktivists under the control of nation-states, or are they just independent contractors acting on their behalf? Google Cloud's 'Dataproc' Abuse Risk Endangers Corporate Data Stores There's a new way for hackers to abuse the cloud, this time with data analysts and scientists in the crosshairs. Critical WordPress Plug-in RCE Bug Exposes Reams of Websites to Takeover Attackers can inject and execute arbitrary PHP code using a flaw in Backup Migration, which has been downloaded more than 90K times. Data's Perilous Journey & Lessons Not Learned From the Target Breach A decade after Target suffered a major security breach, are we still disregarding the gaping holes in our cyber fortifications? Biden's AI Exec Order Is a Start, but We Must Safeguard Innovation It's important for Congress to strengthen protections for AI and set guardrails to make sure it isn't used maliciously. (Sponsored Article) The Imperative of Context in an Era of Expanding API Risks Only 38% of organizations understand API context, a huge security gap underscoring the need for deeper, context-aware security strategies. MORE NEWS / MORE COMMENTARY | | | | | | PRODUCTS & RELEASES | | Survey: 90% of IT Pros Felt Prepared for a Password-Based Cyberattack, Yet More Than Half Fell Victim to One Fortress Information Security & CodeSecure Team Up to Analyze SBOMs & Remediate Critical Vulnerabilities CISOs See Software Supply Chain Security as Bigger Blind Spot Than GenAI: Cycode MORE PRODUCTS & RELEASES |
|
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
