CHROME ZOTERO OUT OF DATE INSTALL
Pegasus and the accompanying exploits used to install it are developed by the controversial seller NSO. Two different zero-days that have been keeping iOS and macOS users busy, meanwhile, were recently used in the wild to infect targets with an advanced piece of spyware known as Pegasus. Electron developers fixed the bug on Tuesday. A single affected intermediate library known as Electron, for instance, runs in Microsoft Teams, Slack, Skype, Discord, and the desktop version of the Signal messenger, to name a few.
Libwebp, in turn, is incorporated into roughly 70 downstream libraries that are included in other libraries and popular apps. This vulnerability, tracked as CVE-2023-4863, originates in a widely used code library known as libwebp, which Google created more than a decade ago to render the then-new WebP graphics format.
The number of apps is likely to grow because a single vulnerability that allows hackers to execute malicious code when users open a booby-trapped image included in a message or web page is present in possibly hundreds of apps. The company tracked 55 zero-days in 2022 and 81 in 2021.Ī sampling of the affected companies and products includes iOS and macOS, Windows, Chrome, Firefox, Acrobat and Reader, the Atlas VPN, and Cisco’s Adaptive Security Appliance Software and its Firepower Threat Defense. September so far is at 10, compared with a total of 60 from January through August, according to security firm Mandiant. The number of zero-days tracked this month is considerably higher than the monthly average this year. People have worked overtime in recent weeks to patch a raft of vulnerabilities actively exploited in the wild, with offerings from Apple, Microsoft, Google, Mozilla, Adobe, and Cisco all being affected since the beginning of the month.
End users, admins, and researchers better brace yourselves: The number of apps being patched for zero-day vulnerabilities has skyrocketed this month and is likely to get worse in the following weeks.
0 kommentar(er)
